CVE-2026-8492

CVE-2026-8492: Translate Drupal with GTranslate - Less critical - DOM clobbering / link manipulation - SA-CONTRIB-2026-035

Vendor Drupal

Product Translate Drupal with GTranslate

Weakness CWE-471

Published May 19, 2026

Last update May 20, 2026

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Modification of Assumed-Immutable Data (MAID) vulnerability in Drupal Translate Drupal with GTranslate allows Resource Location Spoofing. This issue affects Translate Drupal with GTranslate: from 0.0.0 before 3.0.5.

Key dates

Disclosure timeline

May 19, 2026 CVE published

May 20, 2026 Record updated