Vulnerabilities (CVE)

Filtered by vendor Salsa.digital Subscribe

Filtered by product Civictheme Design System

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2025-12082	1 Salsa.digital	1 Civictheme Design System	2025-12-03	N/A	7.5 HIGH
Incorrect Authorization vulnerability in Drupal CivicTheme Design System allows Forceful Browsing.This issue affects CivicTheme Design System: from 0.0.0 before 1.12.0.
CVE-2025-12083	1 Salsa.digital	1 Civictheme Design System	2025-12-03	N/A	6.1 MEDIUM
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal CivicTheme Design System allows Cross-Site Scripting (XSS).This issue affects CivicTheme Design System: from 0.0.0 before 1.12.0.