https://www.systemtek.co.uk/2019/03/drupal-file-module-cross-site-scripting-vulnerability-cve-2019-6341/
Drupal File Module Cross-Site Scripting Vulnerability [CVE-2019-6341]