1 min read

Moderately Critical XSS Vulnerability in Navbar in Drupal 7

Comment

The Drupal Security Team announced a moderately critical Cross-site Scripting-SA-CONTRIB-2022-011 Vulnerability in Navbar module in Drupal 7on January 25th, 2022.

The Navbar module provides a simple, mobile-friendly navigation toolbar but doesn’t sufficiently check for user-provided input.

This vulnerability is mitigated by the fact that an attacker must have the ability to post content using a text format (like the default "Filtered HTML" format) that won't filter out the exploit code.

Solution:

If you use the Navbar module for Drupal 7.x, upgrade to Navbar 7.x-1.8

Source: https://www.drupal.org/sa-contrib-2022-011

Follow TheDropTimes on LinkedIn for more updatesFOLLOW

Comment
You May Like

Article

1xINTERNET Showcases Frontend Editing Module for Drupal

1xINTERNET Showcases Frontend Editing Module for Drupal

Article

1xINTERNET Showcases Frontend Editing Module for Drupal

1xINTERNET Showcases Frontend Editing Module for Drupal

Note: The vision of this web portal is to help promote news and stories around the Drupal community and promote and celebrate the people and organizations in the community. We strive to create and distribute our content based on these content policy. If you see any omission/variation on this please let us know in the comments below and we will try to address the issue as best we can.

XSS
Drupal 7
Security Update
Advertisement Here

Comments

You may also like

You May Like

Article

Win a Free Ticket to DrupalCon Barcelona 2024 with Promo Video Contest

Win a Free Ticket to DrupalCon Barcelona 2024 with Promo Video Contest

Featured

Related

Latest News

Upcoming Events

View All Events

Latest Opportunities

Advertisement Here

Call for Support