ReportizFlow
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Ignition Error Pages allows Cross-Site Scripting (XSS).This issue affects Ignition Error Pages: from 0.0.0 before 1.0.4.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Ignition Error Pages Project |
|
Configuration 1 [-]
|
No data.
References
| Link | Providers |
|---|---|
| https://www.drupal.org/sa-contrib-2025-007 |
|
History
Wed, 04 Jun 2025 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Ignition Error Pages Project
Ignition Error Pages Project ignition Error Pages |
|
| CPEs | cpe:2.3:a:ignition_error_pages_project:ignition_error_pages:*:*:*:*:*:drupal:*:* | |
| Vendors & Products |
Ignition Error Pages Project
Ignition Error Pages Project ignition Error Pages |
Tue, 29 Apr 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Mon, 31 Mar 2025 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Ignition Error Pages allows Cross-Site Scripting (XSS).This issue affects Ignition Error Pages: from 0.0.0 before 1.0.4. | |
| Title | Ignition Error Pages - Critical - Cross Site Scripting - SA-CONTRIB-2025-007 | |
| Weaknesses | CWE-79 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: drupal
Published: 2025-03-31T21:38:50.510Z
Updated: 2025-04-29T15:39:15.545Z
Reserved: 2025-03-31T21:30:04.616Z
Link: CVE-2025-31679
Vulnrichment
Updated: 2025-04-29T15:39:09.979Z
NVD
Status : Analyzed
Published: 2025-03-31T22:15:20.440
Modified: 2025-06-04T15:07:57.973
Link: CVE-2025-31679
Redhat
No data.