3 matches found
CVE-2026-4929
Simple Hierarchical Select SHS for Drupal 7 contains cross-site scripting risk due to improper output escaping of term-derived text. Confirmed affected paths include field formatter output shsfieldformatterview and term-tree child-term data generation shstermgetchildren. Malicious taxonomy term...
CVE-2025-31696
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal RapiDoc OAS Field Formatter allows Cross-Site Scripting XSS.This issue affects RapiDoc OAS Field Formatter: from 0.0.0 before 1.0.1...
Drupal RapiDoc OAS Field Formatter 跨站脚本漏洞
Drupal RapiDoc OAS Field Formatter is a Drupal community field formatter for Drupal. A cross-site scripting vulnerability exists in Drupal RapiDoc OAS Field Formatter versions prior to 1.0.1, which stems from improper input neutralization and could lead to a cross-site scripting attack...