Cross-Site Scripting Vulnerability in Drupal Open Social
CVE-2024-13273

Currently unrated

Key Information:

Vendor: Drupal
Vendor: CVE Published:; 9 January 2025

Summary

A Cross-Site Scripting (XSS) vulnerability has been identified in Drupal Open Social that allows attackers to inject malicious scripts into web pages. This flaw impacts specific versions of Open Social, potentially compromising user data and leading to unauthorized access. Implementing updates and security patches is critical to safeguarding against this threat.

References

https://www.drupal.org/sa-contrib-2024-037

Timeline

Vulnerability published
Jan 9, 2025