Security Advisories - PKSA-7zvx-63nf-7nkj - Packagist

PKSA-7zvx-63nf-7nkj Security Advisory

[MEDIUM] Drupal core - Critical - Cross-site scripting - SA-CORE-2021-002

PKSA-7zvx-63nf-7nkj CVE-2020-13672 GHSA-3m36-mjwj-352c

Affected package: drupal/core

Affected version: >=7.0.0,<7.80|>=8.0.0,<8.1.0|>=8.1.0,<8.2.0|>=8.2.0,<8.3.0|>=8.3.0,<8.4.0|>=8.4.0,<8.5.0|>=8.5.0,<8.6.0|>=8.6.0,<8.7.0|>=8.7.0,<8.8.0|>=8.8.0,<8.9.0|>=8.9.0,<8.9.14|>=9.0.0,<9.0.12|>=9.1.0,<9.1.7

Reported by:
FriendsOfPHP/security-advisories, GitHub