Cross-Site Scripting Vulnerability in Drupal Cookiebot + GTM
CVE-2024-13289
Currently unrated
Summary
A Cross-Site Scripting (XSS) vulnerability exists in the Drupal Cookiebot + GTM module, allowing attackers to inject malicious scripts into web pages generated by the product. This vulnerability affects versions from 0.0.0 to any version before 1.0.18, potentially compromising the security and data integrity of web applications utilizing this module.
References
Timeline
Vulnerability published