Unrated severityNVD Advisory· Published Apr 23, 2025· Updated Apr 25, 2025
Colorbox - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-041
CVE-2025-3900
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Colorbox allows Cross-Site Scripting (XSS).This issue affects Colorbox: from 0.0.0 before 2.1.3.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: >=0.0.0 <2.1.3
- Range: 0.0.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.