CVE-2025-47704 – Drupal Klaro Cookie & Consent Management Cross-Site Scripting (XSS)

May 14, 2025

CVE ID : CVE-2025-47704

Published : May 14, 2025, 5:15 p.m. | 1 hour, 51 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Drupal Klaro Cookie & Consent Management allows Cross-Site Scripting (XSS).This issue affects Klaro Cookie & Consent Management: from 0.0.0 before 3.0.5.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47706 – Drupal Enterprise MFA – TFA Authentication Bypass by Capture-replay Vulnerability

Next Article CVE-2025-47703 – Drupal COOKiES Consent Management Cross-Site Scripting (XSS)

Highlights

CVE-2025-4150 – Netgear EX6200 Remote Buffer Overflow

May 1, 2025

CVE ID : CVE-2025-4150

Published : May 1, 2025, 5:15 a.m. | 1 hour, 54 minutes ago

Description : A vulnerability was found in Netgear EX6200 1.0.3.94. It has been declared as critical. This vulnerability affects the function sub_54340. The manipulation of the argument host leads to buffer overflow. The attack can be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

From Line To Layout: How Past Experiences Shape Your Design Career

Hire React.js Developers in the US: How to Choose the Right Team for Your Needs

Google’s coding agent Jules gets critique functionality

The best smartphones without AI features in 2025: Expert tested and recommended

GPT-5 was supposed to simplify ChatGPT but now it has 4 new modes – here’s why

Gemini just got two of ChatGPT’s best features – and they’re free

The HP OmniBook 5 laptop offers 34 hours of battery life – and it’s 60% off today only

Laravel Boost is released

Laravel Boost is released

Frontend Standards for Optimizely Configured Commerce: Clean & Scalable Web Best Practices

Live Agent Escalation in Copilot Studio Using D365 Omnichannel – Architecture and Use Case

OpenAI’s Sam Altman: GPT-5 fails to meet AGI standards amid Microsoft’s fading partnership — “it’s still missing something”

OpenAI’s Sam Altman: GPT-5 fails to meet AGI standards amid Microsoft’s fading partnership — “it’s still missing something”

You Think You Need a Monster PC to Run Local AI, Don’t You? — My Seven-Year-Old Mid-range Laptop Says Otherwise

8 Registry Tweaks that will Make File Explorer Faster and Easier to Use on Windows 11

CVE-2025-47704 – Drupal Klaro Cookie & Consent Management Cross-Site Scripting (XSS)

How the always-on generation can level up its cybersecurity game

Supply-chain dependencies: Check your resilience blind spot

Can AI really code? Study maps the roadblocks to autonomous software engineering

Register Now for a Laravel Debugging Workshop by Sentry

TEKEVER to invest £400M in UK defencetech, creating 1,000+ skilled jobs

Mozilla Slammed Over Battery-Draining “Garbage” AI in Firefox

CVE-2025-4150 – Netgear EX6200 Remote Buffer Overflow

CVE-2025-48916 – Drupal Bookable Calendar Missing Authorization

Karakeep is a self-hostable bookmark-everything app

New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials

CVE-2025-47704 – Drupal Klaro Cookie & Consent Management Cross-Site Scripting (XSS)

Related Posts