VYPR

multifile

by fyneworks

CVEs (1)

  • CVE-2025-12848Nov 26, 2025
    risk 0.00cvss epss 0.00

    Webform Multiple File Upload module for Drupal 7.x contains a cross-site scripting (XSS) vulnerability in the file name renderer. An unauthenticated attacker can exploit this vulnerability by uploading a file with a malicious filename containing JavaScript code (e.g., "<img…