3 matches found
CVE-2025-48922
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal GLightbox allows Cross-Site Scripting XSS.This issue affects GLightbox: from 0.0.0 before 1.0.16...
CVE-2025-48922 GLightbox - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-078
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal GLightbox allows Cross-Site Scripting XSS.This issue affects GLightbox: from 0.0.0 before 1.0.16...
CVE-2025-48922
GLightbox for Drupal is affected by an XSS vulnerability due to improper input neutralization during web page generation. Affected versions are 0.0.0 through 1.0.15; the issue is resolved in version 1.0.16 and later. Practical impact is cross-site scripting when rendering content that uses GLight...