CNNVD-202601-2376 Information

CNNVD ID

CNNVD-202601-2376

Related CVE

CVE-2025-14557

• CNNVD Published: 2026-01-14

Description (Chinese)

Drupal Facebook Pixel是Drupal社区的一个广告投放模块。 Drupal Facebook Pixel 7.X-1.0版本至7.X-1.1版本存在安全漏洞，该漏洞源于网页生成期间输入中和不当，可能导致存储型跨站脚本攻击。

Description (English)

Drupal Facebook Pixel is an advertising module for the Drupal community. Drupal Facebook Pixel 7.X-1.0 to 7.X-1.1 contains a security loophole, which stems from inappropriate input during web page generation and may lead to storage-type cross-site script attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2026-01-14

Last Modified

2026-02-24

References

https://d7es.tag1.com/security-advisories/facebook-pixel-less-critical-cross-site-scripting https://www.herodevs.com/vulnerability-directory/cve-2025-14557 https://access.redhat.com/security/cve/cve-2025-14557

Patch

https://gitlab.com/tag1consulting/public/facebook_pixel/-/releases