Описание
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Link field display mode formatter allows Cross-Site Scripting (XSS).This issue affects Link field display mode formatter: from 0.0.0 before 1.6.0.
Дополнительная информация
Дефект:
CWE-79
https://bugzilla.redhat.com/show_bug.cgi?id=2356383Link field display mode formatter - Moderately critical - Cross site scripting - SA-CONTRIB-2025-024
EPSS
Процентиль: 4%
0.0002
Низкий
Связанные уязвимости
CVSS3: 6.1
nvd
6 месяцев назад
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Link field display mode formatter allows Cross-Site Scripting (XSS).This issue affects Link field display mode formatter: from 0.0.0 before 1.6.0.
CVSS3: 6.1
github
6 месяцев назад
Drupal Link field display mode formatter Cross-Site Scripting (XSS) vulnerability
EPSS
Процентиль: 4%
0.0002
Низкий