CNNVD-202507-2674 Information

CNNVD ID

CNNVD-202507-2674

Related CVE

CVE-2025-7392

• CNNVD Published: 2025-07-21

Description (Chinese)

Drupal Cookies Addons是Drupal社区的一个插件。 Drupal Cookies Addons 1.2.4之前版本存在安全漏洞，该漏洞源于网页生成期间输入中和不当，可能导致跨站脚本攻击。

Description (English)

Drupal Cookies Addons is a plugin for the Drupal community. There was a security loophole in the previous version of Drupal Cookies Addons 1.2.4, which originated from the inaccuracy of input during the web page generation and could lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2025-07-21

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2025-087 https://nvd.nist.gov/vuln/detail/CVE-2025-7392 https://vigilance.fr/vulnerability/Drupal-Cookies-Addons-Cross-Site-Scripting-dated-09-07-2025-47675

Patch

https://www.drupal.org/project/cookies_addons/releases/1.2.4