Security Advisory

CVE-2025-12761

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-18 16:56:14
Last updated 2025-11-18 20:33:44
Assigner drupal
State PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability in Drupal Simple multi step form allows Cross-Site Scripting (XSS).This issue affects Simple multi step form: from 0.0.0 before 2.0.0.