drupal/ui_patterns is vulnerable to Cross-Site Scripting (XSS)
58
Medium Risk
This module enables you to use Single Directory Components in site building (views, field formatters, blocks, layouts) and it improves the Developer Experience (DX) with SDC. The module doesn't sufficiently sanitize the markup passed to components under certain scenarios.
You are affected if you are using a version that falls within the vulnerable range.
drupal/ui_patterns is vulnerable to Cross-Site Scripting (XSS) in versions 2.0.0 - 2.0.16.
Upgrade the drupal/ui_patterns module to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant