Cross-Site Scripting Vulnerability in Drupal Entity Form Steps
CVE-2024-13305
Currently unrated
What is CVE-2024-13305?
An issue has been identified in the Drupal Entity Form Steps module, which allows for improper neutralization of input during web page generation, leading to a Cross-Site Scripting (XSS) vulnerability. This flaw enables attackers to inject malicious scripts, which may then be executed in the context of the user's browser when the page is rendered. Effective mitigation necessitates updating to version 1.1.4 or higher to ensure the security of applications utilizing this module.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.