Lucene search
K

5 matches found

OSV
OSV
added 2025/04/01 12:30 a.m.4 views

GHSA-P2WG-8H29-874V Drupal Link field display mode formatter Cross-Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Link field display mode formatter allows Cross-Site Scripting XSS. This issue affects Link field display mode formatter: from 0.0.0 before 1.6.0...

6.1CVSS6.5AI score0.00242EPSS
Exploits0References3
OSV
OSV
added 2025/03/31 10:15 p.m.5 views

CVE-2025-31695

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Link field display mode formatter allows Cross-Site Scripting XSS.This issue affects Link field display mode formatter: from 0.0.0 before 1.6.0...

6.1CVSS5.8AI score0.00242EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/31 9:52 p.m.10 views

CVE-2025-31695 Link field display mode formatter - Moderately critical - Cross site scripting - SA-CONTRIB-2025-024

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Link field display mode formatter allows Cross-Site Scripting XSS.This issue affects Link field display mode formatter: from 0.0.0 before 1.6.0...

0.00242EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/31 9:52 p.m.3 views

CVE-2025-31695 Link field display mode formatter - Moderately critical - Cross site scripting - SA-CONTRIB-2025-024

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Link field display mode formatter allows Cross-Site Scripting XSS.This issue affects Link field display mode formatter: from 0.0.0 before 1.6.0...

6.1AI score0.00242EPSS
Exploits0References1
OSV
OSV
added 2025/03/19 6:53 p.m.7 views

DRUPAL-CONTRIB-2025-025

This module can be used to render Open API Documentation using the RapiDoc library. The module provides a custom formatter for link fields. Drupal core does not sufficiently sanitize link element attributes, which can lead to a Cross Site Scripting vulnerability XSS. A separate fix for Drupal cor...

6.1CVSS6.3AI score0.00242EPSS
Exploits0References1
Rows per page
Query Builder