Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-48917

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal EU Cookie Compliance (GDPR Compliance) allows Cross-Site Scripting (XSS).This issue affects EU Cookie Compliance (GDPR Compliance): from 0.0.0 before 1.26.0.

Published

2025-06-13T16:15:26.930

Last Modified

2025-07-08T20:35:15.717

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.0 (MEDIUM)

Weaknesses

Type: Secondary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	freelance-it-consultant	eu_cookie_compliance	< 8.x-1.26.0	Yes

References

https://www.drupal.org/sa-contrib-2025-072 Third Party Advisory ([email protected])