- Issue created by @utcwebdev
- First commit to issue fork.
- Merge request !12Issue #3498237: netcarver/textile security: XSS vulnerability β (Open) created by volkerk
High security vulnerability.
β― composer audit
Found 1 security vulnerability advisory affecting 1 package:
+-------------------+----------------------------------------------------------------------------------+
| Package | netcarver/textile |
| Severity | high |
| CVE | NO CVE |
| Title | PHP-Textile has persistent XSS vulnerability in image link handling |
| URL | https://github.com/advisories/GHSA-95m2-chm4-mq7m |
| Affected versions | <=4.1.2 |
| Reported at | 2025-01-07T17:11:02+00:00 |
| Advisory ID | PKSA-q7hq-sbtp-vntg |
+-------------------+----------------------------------------------------------------------------------+
β― composer why netcarver/textile
drupal/paragraphs_paste 2.0.0-beta6 requires netcarver/textile (^3.7)
Test with 4.1.3 or wait for 3.x release with back ported fix from 4.1.3.
Active
2.0
Miscellaneous