CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Klaro Cookie & Consent Management allows Cross-Site Scripting XSS.This issue affects Klaro Cookie & Consent Management: from 0.0.0 before 3.0.7...

4.3CVSS6.7AI score0.00188EPSS

Exploits0References1

NVD•added 2025/06/26 2:15 p.m.•4 views

CVE-2025-5682

4.3CVSS0.00188EPSS

Exploits0References1

OSV•added 2025/06/26 2:15 p.m.•0 views

CVE-2025-5682

4.3CVSS5.8AI score0.00188EPSS

Exploits0References1

Vulnrichment•added 2025/06/26 1:33 p.m.•3 views

CVE-2025-5682 Klaro Cookie & Consent Management - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-080

6.6AI score0.00188EPSS

Exploits0References1

CVE•added 2025/06/26 1:33 p.m.•11 views

CVE-2025-5682

CVE-2025-5682 affects Klaro Cookie & Consent Management (Drupal) due to improper input neutralization during web page generation, enabling Cross-site Scripting (XSS). Affected versions are 0.0.0 through 3.0.6; the vulnerability is fixed in 3.0.7 and later. Remediation: update to 3.0.7+ (or apply ...

4.3CVSS6.6AI score0.00188EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/06/26 1:33 p.m.•5 views

CVE-2025-5682 Klaro Cookie & Consent Management - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-080

0.00188EPSS

Exploits0References1

Positive Technologies•added 2025/06/26 12:0 a.m.•2 views

PT-2025-26962 · Unknown +1 · Klaro Cookie & Consent Management +1

Name of the Vulnerable Software and Affected Versions: Klaro Cookie & Consent Management versions 0.0.0 through 3.0.6 Description: The issue affects Drupal Klaro Cookie & Consent Management, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation...

4.3CVSS5.7AI score0.00188EPSS

Exploits0References4

CNNVD•added 2025/06/26 12:0 a.m.•1 views

Drupal Klaro Cookie & Consent Management 安全漏洞

Drupal Klaro Cookie & Consent Management is a module plugin in the Drupal content management system for the Drupal community. A security vulnerability exists in Drupal Klaro Cookie & Consent Management versions prior to 3.0.7, which stems from improper input neutralization and could lead to a...

4.3CVSS6AI score0.00188EPSS

Exploits0References1

OSV•added 2025/06/25 6:41 p.m.•2 views

DRUPAL-CONTRIB-2025-080

Klaro Cookie & Consent Management module is used for consent management for cookies and external sources. It makes changes to the markup to enable or disable loading. The module doesn't sufficiently sanitize some HTML attributes allowing persistent Cross-site Scripting XSS attacks. This...

4.3CVSS6.1AI score0.00188EPSS

Exploits0References1

Drupal•added 2025/06/25 12:0 a.m.•9 views

Klaro Cookie & Consent Management - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-080

4.3CVSS5.5AI score0.00188EPSS

Exploits0References1

Patchstack•added 2025/06/25 12:0 a.m.•3 views

Drupal Klaro Cookie & Consent Management module < 3.0.7 - Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Klaro Cookie & Consent Management versions 3.0.7...

4.3CVSS6.1AI score0.00188EPSS

Exploits0References1Affected Software1

OSV•added 2025/06/13 4:15 p.m.•3 views

CVE-2025-48919

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...

5CVSS5.9AI score

Exploits0References1

OSV•added 2025/06/13 4:15 p.m.•3 views

CVE-2025-48918

8.8CVSS5.9AI score

Exploits0References1

NVD•added 2025/06/13 4:15 p.m.•10 views

CVE-2025-48919

5CVSS0.00179EPSS

Exploits0References1

NVD•added 2025/06/13 4:15 p.m.•9 views

CVE-2025-48918