2.6.1
NamelessCoder
tagged this
07 May 07:07
Prevents a potential security issue when expression nodes are used to output variables, in which case, they would not be properly escaped. The fix implements escaping interception for these expression nodes. https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N/E:F/RL:O/RC:C