AVG-2069 log

Package drupal
Status Fixed
Severity High
Type cross-site scripting
Affected 9.1.7-1
Fixed 9.1.10-1
Current 9.2.9-1 [community]
Ticket None
Created Fri Jun 11 15:52:16 2021
Issue Severity Remote Type Description
CVE-2021-33829 High Yes Cross-site scripting
Drupal core uses the third-party CKEditor library. This library has an error in parsing HTML that could lead to a cross-site scripting (XSS) attack....
Date Advisory Package Type
15 Jun 2021 ASA-202106-35 drupal cross-site scripting