CVE-2025-48447 – Drupal Lightgallery Cross-Site Scripting (XSS)

June 11, 2025

CVE ID : CVE-2025-48447

Published : June 11, 2025, 3:15 p.m. | 46 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Drupal Lightgallery allows Cross-Site Scripting (XSS).This issue affects Lightgallery: from 0.0.0 before 1.6.0.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48448 – Drupal Admin Audit Trail Resource Exhaustion DoS

Next Article CVE-2025-48445 – Drupal Commerce Eurobank Redirect Authorization Bypass

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

5 things we didn’t get from the Xbox Games Showcase, because Xbox obviously hates me personally

Minecraft Vibrant Visuals finally has a release date and it’s dropping with the Happy Ghasts

QAQ-QQ-AI-QUEST

QAQ-QQ-AI-QUEST

JS Dark Arts: Abusing prototypes and the Result type

Helpful Git Aliases To Maximize Developer Productivity

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Microsoft Copilot’s own default configuration exposed users to the first-ever “zero-click” AI attack, but there was no data breach

Sam Altman says “OpenAI was forced to do a lot of unnatural things” to meet the Ghibli memes demand surge

5 things we didn’t get from the Xbox Games Showcase, because Xbox obviously hates me personally

CVE-2025-48447 – Drupal Lightgallery Cross-Site Scripting (XSS)

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

More From Our Main Blog: The Good, the Bad and the Ugly in Cybersecurity – Week 24

AMD’s Ryzen 8000HX refresh couldn’t come at a better time — Affordable gaming CPUs arrive as laptop prices rise

CVE-2023-53142 – “Ice: Buffer Overflow in ice_get_module_eeprom()”

CVE-2025-5791 – Rust Crate Root Group Privilege Escalation

Designing for a Greener Future

8 most exciting AI features and tools revealed at Google I/O 2025

These solid-state fans will revolutionize cooling in our PCs and laptops

Your Windows 10 PC isn’t dead yet – this OS from Google can revive it

Use Amazon Bedrock Intelligent Prompt Routing for cost and latency benefits

CVE-2025-48447 – Drupal Lightgallery Cross-Site Scripting (XSS)

Related Posts