Security Flaw in Drupal Simple GTM Product by Drupal
CVE-2025-3736

5.9MEDIUM

Key Information:

Vendor: Drupal
Status: Simple Gtm
Vendor: CVE Published:; 16 April 2025

Summary

A security vulnerability has been identified in the Simple GTM extension for Drupal, which could potentially expose users to security risks. This issue needs immediate attention from users and administrators of the Simple GTM product. Ensure that your installations are updated to mitigate any associated risks.

Affected Version(s)

Simple GTM *.*

References

https://www.drupal.org/sa-contrib-2025-037

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 16, 2025