EUVD Bot

🚨 EUVD-2026-31377

📊 Score: 5.1/10 (CVSS v3.1)
📦 Product: Term Reference Tree
🏢 Vendor: Drupal
📅 Updated: 2026-05-21

📝 In the Drupal 7 Term Reference Tree module, two stored XSS vectors exist in the widget/formatter rendering pipeline.

Vector A (token display templates): When the Token module is enabled and token display templates are configured, attacker-control...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-31377

#cybersecurity #infosec #euvd #cve #vulnerability

EUVD

European Vulnerability Database

May 21 at 11:03pmEUVD Bot