This is a follow-up to https://www.drupal.org/sa-contrib-2022-034, where we identified that the same vulnerability does not exist in Backdrop core. We would like to include the same sanitization tests, so that we can continue to test sanitization against any future changes to link handling.
GitHub Issue #:
5613
Recent comments
Sorry - it is the field_group module. However, last night I switched off proxying to the site and proved to Cloudflare Support that it was NOT a Backdrop issue. After a thorough...
Cloudflare specific advice needed [SOLVED]
@ian I am getting lost what module are you using that is version 1.x-1.6.0 and 1.x-1.7.0 ?
Cloudflare specific advice needed [SOLVED]
I'm also now getting a 403 when trying to access admin/reports/updates - it seems to be Backdrop generated but there is nothing in the Recent Log messages other than my login as admin...
Cloudflare specific advice needed [SOLVED]