CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Github Security Blog•added 2025/06/11 3:30 p.m.•7 views

Drupal Lightgallery Cross-site Scripting vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Lightgallery allows Cross-Site Scripting XSS. This issue affects Lightgallery: from 0.0.0 before 1.6.0...

7.1CVSS6.5AI score0.00281EPSS

Exploits0References3Affected Software1

OSV•added 2025/06/11 3:15 p.m.•3 views

CVE-2025-48447

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Lightgallery allows Cross-Site Scripting XSS.This issue affects Lightgallery: from 0.0.0 before 1.6.0...

7.1CVSS5.8AI score

Exploits0References1

NVD•added 2025/06/11 3:15 p.m.•6 views

CVE-2025-48447

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Lightgallery allows Cross-Site Scripting XSS.This issue affects Lightgallery: from 0.0.0 before 1.6.0...

7.1CVSS0.00281EPSS

Exploits0References1

Cvelist•added 2025/06/11 2:37 p.m.•10 views

CVE-2025-48447 Lightgallery - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-069

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Lightgallery allows Cross-Site Scripting XSS.This issue affects Lightgallery: from 0.0.0 before 1.6.0...

0.00281EPSS

Exploits0References1

Vulnrichment•added 2025/06/11 2:37 p.m.•6 views

CVE-2025-48447 Lightgallery - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-069

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Lightgallery allows Cross-Site Scripting XSS.This issue affects Lightgallery: from 0.0.0 before 1.6.0...

6.6AI score0.00281EPSS

Exploits0References1

CNNVD•added 2025/06/11 12:0 a.m.•1 views

Drupal Lightgallery 跨站脚本漏洞

Drupal Lightgallery is a plugin for the Drupal community. A cross-site scripting vulnerability exists in Drupal Lightgallery versions prior to 1.6.0 that stems from improper input neutralization and could lead to a cross-site scripting attack...

7.1CVSS5.8AI score0.00281EPSS

Exploits0References3

Positive Technologies•added 2025/06/11 12:0 a.m.•3 views

PT-2025-25222 · Drupal · Drupal Lightgallery

Name of the Vulnerable Software and Affected Versions: Drupal Lightgallery versions 0.0.0 through 1.6.0 Description: The issue affects Drupal Lightgallery, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation. Recommendations: For versions 0.0.0...

7.1CVSS5.6AI score0.00281EPSS

Exploits0References7