Security Advisory

CVE-2025-10931

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-29 23:13:40
Last updated 2025-10-30 14:15:53
Assigner drupal
State PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in Drupal Umami Analytics allows Cross-Site Scripting (XSS).This issue affects Umami Analytics: from 0.0.0 before 1.0.1.