CVE-2025-1467

Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...

CVE-2025-1467

Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...

CVE-2025-1467

Versions of the package tarteaucitronjs before 1.17.0 are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541...

CVE-2025-1467

The CVE-2025-1467 entry concerns tarteaucitronjs versions before 1.17.0, which are vulnerable to Cross-site Scripting (XSS) via the getElemWidth() and getElemHeight() functions. Multiple sources (NVD, Red Hat, Veracode, OSV, CIRCL, GHSA) consistently describe the flaw as an XSS issue rooted in in...

tarteaucitron.js 安全漏洞

tarteaucitron.js is a cookie manager for the Amauri CHAMPEAUX individual developer. A security vulnerability exists in tarteaucitron.js version 1.17.0, which stems from the getElemWidth and getElemHeight functions containing a cross-site scripting vulnerability...

Cross-site Scripting (XSS)

Overview tarteaucitronjs is a package that provides compliance to the European cookie law. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the getElemWidth and getElemHeight. This is related to SNYK-JS-TARTEAUCITRONJS-8366541 Details Cross-site scripting or XSS is...