CNNVD-202602-564 Information
Feb 04, 2026
cve
CNNVD ID
CNNVD-202602-564
Related CVE
- CNNVD Published: 2026-02-04
Description (Chinese)
Drupal AT Internet Piano Analytics是Drupal公司的一个数据分析服务接入插件。 Drupal AT Internet Piano Analytics 1.0.1之前版本和2.3.1之前版本存在安全漏洞,该漏洞源于网页生成期间输入中和不当,可能导致跨站脚本攻击。
Description (English)
Drupal AT Internet Piano Analytics is a data analysis service access plugin for Drupal. There is a security loophole in previous versions of Drupal AT Internet Piano Analytics 1.0 and 2.3.1, which stems from inappropriate input during web page generation and could lead to cross-site script attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Drupal
Published
2026-02-04
Last Modified
2026-02-24
References
https://www.drupal.org/sa-contrib-2026-004
Patch
https://www.drupal.org/sa-contrib-2026-004
Share on: