Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Drupal Core allows Cross-Site Scripting (XSS).This issue affects Drupal Core: from 7.0 before 7.102.
{ "severity": "Medium", "cpes": [ "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*" ] }