CVE-2025-48917

CVE-2025-48917: EU Cookie Compliance (GDPR Compliance) - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-072

Vendor Drupal
Product EU Cookie Compliance (GDPR Compliance)
Weakness CWE-79 · XSS
Published June 13, 2025
Last update June 13, 2025
View on NVD All CVEs

CVSS base score

What the vulnerability does

01Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal EU Cookie Compliance (GDPR Compliance) allows Cross-Site Scripting (XSS).This issue affects EU Cookie Compliance (GDPR Compliance): from 0.0.0 before 1.26.0.

Key dates

02Disclosure timeline

June 13, 2025 CVE published
June 13, 2025 Record updated