PT-2025-33499 · Drupal · Drupal Googletag Manager
Anatoly Politsin
+3
·
Published
2025-08-15
·
Updated
2025-08-16
·
CVE-2025-8362
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
Drupal GoogleTag Manager versions 0.0.0 through 1.9.9
Description:
Improper neutralization of input during web page generation allows for Cross-Site Scripting (XSS).
Recommendations:
Update Drupal GoogleTag Manager to version 1.10.0 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Drupal Googletag Manager