Security Drupal 8.0.x-dev Cross Site Scripting February 20, 2016 007admin Leave a comment Drupal version 8.0.x-dev suffers from a cross site scripting vulnerability on IE8 and older versions.