Drupal · Drupal Googletag Manager · CVE-2025-8362
Name of the Vulnerable Software and Affected Versions:
Drupal GoogleTag Manager versions 0.0.0 through 1.9.9
Description:
Improper neutralization of input during web page generation allows for Cross-Site Scripting (XSS).
Recommendations:
Update Drupal GoogleTag Manager to version 1.10.0 or later.