CNNVD-202506-1777 Information

CNNVD ID

CNNVD-202506-1777

Related CVE

CVE-2025-48915

• CNNVD Published: 2025-06-13

Description (Chinese)

Drupal COOKiES Consent Management是Drupal社区的一个Drupal内容管理系统中的模块插件。 Drupal COOKiES Consent Management 1.2.15之前版本存在安全漏洞，该漏洞源于输入中和不当，可能导致跨站脚本攻击。

Description (English)

Drupal COOKIES Community is a module plugin in the Drupal Content Management System of the Drupal community. There was a security loophole in the pre-Drupal COOKIES Community 1.2.15 version, which originated in inappropriate input and could lead to a cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2025-06-13

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2025-076 https://vigilance.fr/vulnerability/Drupal-COOKiES-Consent-Management-Cross-Site-Scripting-dated-29-05-2025-47298

Patch

https://www.drupal.org/project/cookies/releases/1.2.15