CNNVD-202601-4682 Information
Jan 28, 2026
cve
CNNVD ID
CNNVD-202601-4682
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
Drupal AI是Drupal社区的一个集成人工智能功能的模块或解决方案。 Drupal AI 1.0.7之前版本、1.1.7之前版本和1.2.4之前版本存在安全漏洞,该漏洞源于网页生成期间输入中和不当,可能导致跨站脚本攻击。
Description (English)
Drupal AI is a module or solution in the Drupal community that combines the intelligence functions of adult workers. Pre-Drupal AI 1.0.7, pre-1.1.7 and pre-1.2.4 security loopholes, which stem from inappropriate input during webpage generation, may lead to cross-site script attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Drupal
Published
2026-01-28
Last Modified
2026-02-24
References
https://www.drupal.org/sa-contrib-2025-119
Patch
https://www.drupal.org/sa-contrib-2025-119
Share on: