Super Login - Moderately critical - Cross site scripting - SA-CONTRIB-2019-062

Project: Super LoginDate: 2019-August-14Security risk: Moderately critical 13∕25 AC:Basic/A:Admin/CI:Some/II:Some/E:Theoretical/TD:AllVulnerability: Cross site scriptingDescription: This module improves the Drupal login page with the new features and layout.
The module doesn't sufficiently filter input text in the administration pages text configuration inputs. For example, the login text field.
The vulnerability is mitigated by the fact it can only be exploited by a user with the "Administer super login" permission.Solution: Install the latest version:

Also see the Super Login project page.Reported By: 

Fixed By: 

Coordinated By: 

Path to article