Description
Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Drupal Drupal core allows Object Injection. This issue affects Drupal core: from 8.0.0 before 10.5.9, from 10.6.0 before 10.6.7, from 11.0.0 before 11.2.11, from 11.3.0 before 11.3.7.
Remediation
References
Related Vulnerabilities
WordPress Plugin Connections Business Directory Cross-Site Scripting (8.5.8)
WordPress Plugin WP SMS Cross-Site Scripting (5.4.9)
WordPress Plugin External Links-nofollow, noopener & new window Cross-Site Request Forgery (2.57)
PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1052)
Atlassian Jira CVE-2021-26075 Vulnerability (CVE-2021-26075)