Drupal.Core.file_create_filename.XSS

description-logoDescription

This indicates an attack attempt to exploit a Cross-Site Scripting Vulnerability in Drupal Core.
A remote unauthenticated attacker can upload an HTML file to the vulnerable version of the Drupal installation. Successful exploitation results in the execution of arbitrary script code in the browser of users utilizing the site. Alternatively, the target user may be enticed to click on a link to cause the arbitrary code execution within the security context of the target user.

affected-products-logoAffected Products

Drupal Core 7 prior to 7.65
Drupal Core 8.5 prior to 8.5.14
Drupal Core 8.6 prior to 8.6.13

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.drupal.org/sa-core-2019-004

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-14 14.633 Default_action:pass:drop
2019-06-06 14.627 Severity:critical:medium
2019-05-07 14.608