CVE-2025-7716

State: PUBLISHED · Published: 2025-07-21 · Updated: 2025-07-22 · Assigner: drupal

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Real-time SEO for Drupal allows Cross-Site Scripting (XSS).This issue affects Real-time SEO for Drupal: from 2.0.0 before 2.2.0.

CWE

CWE-79 — CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected

Drupal / Real-time SEO for Drupal — v=2.0.0 <2.2.0 [affected]

CVSS

(none)

References

https://www.drupal.org/sa-contrib-2025-091

Source

cvelistV5-main/cves/2025/7xxx/CVE-2025-7716.json