Security Advisory

CVE-2026-0749

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-28 18:56:05

Last updated 2026-01-28 19:12:36

Assigner drupal

State PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in Drupal Form Builder allows Cross-Site Scripting (XSS).This issue affects Drupal: from 7.X-1.0 through 7.X-1.22.

← Browse all CVEs View on cve.org ↗