Drupal · Drupal Core · CVE-2020-13668
**Name of the Vulnerable Software and Affected Versions**
Drupal Core versions prior to 8.8.10
Drupal Core versions prior to 8.9.6
Drupal Core versions prior to 9.0.6
**Description**
The issue is related to an Access Bypass vulnerability in Drupal Core, where an attacker can exploit the way HTML is rendered for affected forms.
**Recommendations**
For versions prior to 8.8.10, update to version 8.8.10 or later.
For versions prior to 8.9.6, update to version 8.9.6 or later.
For versions prior to 9.0.6, update to version 9.0.6 or later.