CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

EUVD•added 2026/05/20 12:31 a.m.•14 views

EUVD-2026-30988

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal Obfuscate allows Cross-Site Scripting XSS. This issue affects Obfuscate: from 0.0.0 before 2.0.2...

5.8AI score0.00033EPSS

Exploits0References2

NVD•added 2026/05/19 11:16 p.m.•7 views

CVE-2026-6871

6.1CVSS0.00033EPSS

Exploits0References1

CVE•added 2026/05/19 10:28 p.m.•9 views

CVE-2026-6871

CVE-2026-6871 concerns the Drupal Obfuscate module. The issue is an XSS vulnerability caused by improper neutralization of input during web page generation. Affected versions are from 0.0.0 up to, but not including, 2.0.2. The root cause is insufficient sanitization when obfuscated emails are pro...

6.1CVSS5.8AI score0.00033EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/19 10:28 p.m.•5 views

CVE-2026-6871 Obfuscate - Moderately critical - Cross-site scripting - SA-CONTRIB-2026-033

5.8AI score0.00033EPSS

Exploits0References1

AlpineLinux•added 2026/05/19 10:28 p.m.•5 views

CVE-2026-6871

6.1CVSS5.8AI score0.00033EPSS

Exploits0References1

Cvelist•added 2026/05/19 10:28 p.m.•33 views

CVE-2026-6871 Obfuscate - Moderately critical - Cross-site scripting - SA-CONTRIB-2026-033

0.00033EPSS

Exploits0References1

ATTACKERKB•added 2026/05/19 10:28 p.m.•5 views

CVE-2026-6871

5.8AI score0.00033EPSS

Exploits0References2

CNNVD•added 2026/05/19 12:0 a.m.•7 views

Drupal Obfuscate 跨站脚本漏洞

Drupal Obfuscate is a Drupal module from the Drupal community. Versions of Drupal Obfuscate prior to 2.0.2 contained a cross-site scripting vulnerability. This vulnerability stemmed from improper input validation during the web page generation process, which could lead to cross-site scripting...

6.1CVSS5.6AI score0.00033EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-9609

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.00335EPSS

Exploits0References3

RedhatCVE•added 2025/04/04 9:37 p.m.•17 views

CVE-2025-3130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: from 0.0.0 before 2.0.1...

5.4CVSS7AI score0.00335EPSS

Exploits0References3

OSV•added 2025/04/03 12:31 a.m.•8 views

GHSA-HPHM-3X7F-G875 Drupal Obfuscate Vulnerable to Stored Cross-Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS. This issue affects Obfuscate: from 0.0.0 before 2.0.1...

5.4CVSS6.9AI score0.00335EPSS

Exploits0References3

Github Security Blog•added 2025/04/03 12:31 a.m.•14 views

Drupal Obfuscate Vulnerable to Stored Cross-Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS. This issue affects Obfuscate: from 0.0.0 before 2.0.1...

5.4CVSS6.9AI score0.00335EPSS

Exploits0References3Affected Software1

NVD•added 2025/04/02 10:15 p.m.•15 views

CVE-2025-3130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: from 0.0.0 before 2.0.1...

5.4CVSS0.00335EPSS

Exploits0References1

OSV•added 2025/04/02 10:15 p.m.•3 views

CVE-2025-3130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: from 0.0.0 before 2.0.1...

5.4CVSS5.8AI score0.00335EPSS

Exploits0References1

CVE•added 2025/04/02 9:10 p.m.•58 views

CVE-2025-3130

CVE-2025-3130 describes a stored XSS vulnerability in the Drupal Obfuscate module. The issue arises from improper input neutralization during web page generation, allowing stored cross-site scripting in Obfuscate versions before 2.0.1. Impact is to users who load pages containing obfuscated email...

5.4CVSS7AI score0.00335EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/04/02 9:10 p.m.•8 views

CVE-2025-3130 Obfuscate - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-029

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: from 0.0.0 before 2.0.1...

7AI score0.00335EPSS

Exploits0References1

Cvelist•added 2025/04/02 9:10 p.m.•14 views

CVE-2025-3130 Obfuscate - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-029

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: from 0.0.0 before 2.0.1...

0.00335EPSS

Exploits0References1

AlpineLinux•added 2025/04/02 9:10 p.m.•4 views

CVE-2025-3130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Obfuscate allows Stored XSS.This issue affects Obfuscate: from 0.0.0 before 2.0.1...

5.4CVSS7.1AI score0.00335EPSS

Exploits0References1

OSV•added 2025/04/02 5:3 p.m.•3 views

DRUPAL-CONTRIB-2025-029

This module enables you to obfuscate email addresses, to avoid them being easily available to spammers. The module doesn't sufficiently sanitise input when ROT13 encoding is used. This vulnerability is mitigated by the fact that an attacker must have a role with the ability to enter specific HTML...

5.4CVSS6.6AI score0.00335EPSS

Exploits0References1