Security Advisory

CVE-2022-25271

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-16 00:00:00

Last updated 2024-08-03 04:36:06

Assigner drupal

State PUBLISHED

Description

Drupal cores form API has a vulnerability where certain contributed or custom modules forms may be vulnerable to improper input validation. This could allow an attacker to inject disallowed values or overwrite data. Affected forms are uncommon, but in certain cases an attacker could alter critical or sensitive data.

← Browse all CVEs View on cve.org ↗