Bing Autosuggest API - Moderately critical - Cross Site Scripting - SA-CONTRIB-2018-058

Project: Bing Autosuggest API
Version: 7.x-1.x-dev
Date: 2018-August-29
Security risk: *Moderately critical* 13∕25
Vulnerability: Cross Site Scripting

Description

 
This module enables you to use the Bing Autosuggest API.

The module doesn't sufficiently sanitize a value used to populate an API
request.

Solution

 
Install the latest version:

* If you use the Bing Autosuggest API module for Drupal 7.x, upgrade to Bing Autosuggest API 7.x-1.1

Also see the Bing Autosuggest API project page.

Add new comment