Опубликовано: 18 нояб. 2025
Источник: github
Github: Прошло ревью
CVSS4: 1.1
CVSS3: 3.5
Описание
Drupal Simple multi step form allows Cross-Site Scripting
Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability in Drupal Simple multi step form allows Cross-Site Scripting (XSS).This issue affects Simple multi step form: from 0.0.0 before 2.0.0.
Пакеты
Наименование
drupal/simple_multistep
composer
Затронутые версииВерсия исправления
< 2.0.0
2.0.0
Связанные уязвимости
CVSS3: 3.5
nvd
3 месяца назад
Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability in Drupal Simple multi step form allows Cross-Site Scripting (XSS).This issue affects Simple multi step form: from 0.0.0 before 2.0.0.