Description
Cross-site scripting (XSS) vulnerability in the Glossary module 6.x-1.x before 6.x-1.8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "taxonomy information."
Remediation
References
Related Vulnerabilities
WordPress Plugin Copy or Move Comments Multiple Vulnerabilities (1.0.0)
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-12170)
WordPress Plugin Wonder Video Embed Cross-Site Scripting (1.7)
WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.14)
WordPress Plugin Advanced Custom Fields PRO Security Bypass (5.12)