CVE-2024-13237 – Drupal File Entity (Fieldable Files) Cross-Site Scripting (XSS)

1月 9, 2025
8:17 pm

CVE ID : CVE-2024-13237

Published : Jan. 9, 2025, 7:15 p.m. | 1 hour, 1 minute ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Drupal File Entity (fieldable files) allows Cross-Site Scripting (XSS).This issue affects File Entity (fieldable files): from 7.X-* before 7.X-2.38.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13237 – Drupal File Entity (Fieldable Files) Cross-Site Scripting (XSS)

Elvescore.io

Recent Posts

CVE-2024-13237 – Drupal File Entity (Fieldable Files) Cross-Site Scripting (XSS)

CVE-2024-13238 – Drupal Typogrify Cross-Site Scripting (XSS)

CVE-2024-13239 – Drupal Two-factor Authentication Authentication Abuse

CVE-2024-13240 – Drupal Open Social Persistent Phantom Access Violation

CVE-2024-13241 – Drupal Open Social Unauthenticated Information Disclosure

CVE-2024-13242 – Drupal Swift Mailer Exposed Resource Location Spoofing

CVE-2024-13237 – Drupal File Entity (Fieldable Files) Cross-Site Scripting (XSS)

CVE-2024-13237 – Drupal File Entity (Fieldable Files) Cross-Site Scripting (XSS)