Civictheme Design System CVEs and Security Vulnerabilities - OpenCVE

Filtered by vendor Drupal Subscriptions

Filtered by product Civictheme Design System Subscriptions

Search

Switch to Advanced Search (Beta)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-12082	2 Drupal, Salsa.digital	3 Civictheme Design System, Drupal, Civictheme Design System	2025-12-03	7.5 High
Incorrect Authorization vulnerability in Drupal CivicTheme Design System allows Forceful Browsing.This issue affects CivicTheme Design System: from 0.0.0 before 1.12.0.
CVE-2025-12083	2 Drupal, Salsa.digital	3 Civictheme Design System, Drupal, Civictheme Design System	2025-12-03	6.1 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal CivicTheme Design System allows Cross-Site Scripting (XSS).This issue affects CivicTheme Design System: from 0.0.0 before 1.12.0.

Page 1 of 1.