Super Login - Moderately critical - Cross site scripting - SA-CONTRIB-2019-062
Project: Super Login Date: 2019-August-14 Security risk: Moderately critical 13∕25 Vulnerability: Cross site scripting
This module improves the Drupal login page with the new features and layout.
The module doesn't sufficiently filter input text in the administration pages text configuration inputs. For example, the login text field.
The vulnerability is mitigated by the fact it can only be exploited by a user with the "Administer super login" permission.
Install the latest version:
Also see the Super Login project page.