20 matches found
EUVD-2025-18291
Malicious code in bioql PyPI...
EUVD-2025-18295
Malicious code in bioql PyPI...
CVE-2025-48919
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48918
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48919
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48918
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48919 Simple Klaro - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-073
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48919 Simple Klaro - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-073
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48919
CVE-2025-48919 affects Drupal Simple Klaro module versions 0.0.0 through 1.10.0. The root cause is improper neutralization/sanitization of data attributes, enabling cross-site scripting (XSS). Impact is persistent XSS when the module processes unsanitized attributes in the Drupal backend. Mitigat...
CVE-2025-48918 Simple Klaro - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-071
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48918 Simple Klaro - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-071
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Drupal Simple Klaro allows Cross-Site Scripting XSS.This issue affects Simple Klaro: from 0.0.0 before 1.10.0...
CVE-2025-48918
CVE-2025-48918 affects Drupal Simple Klaro (Klaro! A Simple Consent Manager). The issue is an Improper Neutralization of Input During Web Page Generation (XSS) in Simple Klaro versions 0.0.0 through 1.10.0. The weakness enables Cross-Site Scripting due to insufficient input sanitization in the mo...
PT-2025-25428 · Drupal · Drupal Simple Klaro
Name of the Vulnerable Software and Affected Versions: Drupal Simple Klaro versions 0.0.0 through 1.10.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Cross-Site Scripting XSS attacks...
Drupal Simple Klaro 安全漏洞
Drupal Simple Klaro is an extension to Consent Management Software Klaro from the Drupal community. A security vulnerability exists in Drupal Simple Klaro versions prior to 1.10.0 that stems from improper input neutralization and could lead to a cross-site scripting attack...
PT-2025-25427 · Drupal · Drupal Simple Klaro
Name of the Vulnerable Software and Affected Versions: Drupal Simple Klaro versions 0.0.0 through 1.10.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Cross-Site Scripting XSS attacks...
Drupal Simple Klaro 安全漏洞
Drupal Simple Klaro is an extension to Consent Management Software Klaro from the Drupal community. A security vulnerability exists in Drupal Simple Klaro versions prior to 1.10.0 that stems from improper input neutralization and could lead to a cross-site scripting attack...
DRUPAL-CONTRIB-2025-071
The "Simple Klaro" module adds the "Klaro! A Simple Consent Manager" to your website and allows you to configure it according to your needs in the Drupal backend. The module doesn't sufficiently mark its administrative permission as restricted, creating the possibility for the permission to be...
Simple Klaro - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-071
The "Simple Klaro" module adds the "Klaro! A Simple Consent Manager" to your website and allows you to configure it according to your needs in the Drupal backend. The module doesn't sufficiently mark its administrative permission as restricted, creating the possibility for the permission to be...
Simple Klaro - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-073
The "Simple Klaro" module adds the "Klaro! A Simple Consent Manager" to your website and allows you to configure it according to your needs in the Drupal backend. The module doesn't sufficiently sanitise data attributes allowing persistent Cross Site Scripting XSS attacks. This vulnerability is...
Drupal Simple Klaro module < 1.10.0 - Unauthenticated Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Simple Klaro versions 1.10.0...