CVE-2026-22809
- EPSS 0.02%
- Veröffentlicht 13.01.2026 19:36:21
- Zuletzt bearbeitet 20.01.2026 16:49:02
tarteaucitron.js is a compliant and accessible cookie banner. Prior to 1.29.0, a Regular Expression Denial of Service (ReDoS) vulnerability was identified in tarteaucitron.js in the handling of the issuu_id parameter. This vulnerability is fixed in 1...
CVE-2025-48939
- EPSS 0.02%
- Veröffentlicht 03.07.2025 16:26:31
- Zuletzt bearbeitet 21.10.2025 13:56:42
tarteaucitron.js is a compliant and accessible cookie banner. Prior to version 1.22.0, a vulnerability was identified in tarteaucitron.js where document.currentScript was accessed without verifying that it referenced an actual <script> element. If an...
CVE-2025-31476
- EPSS 0.21%
- Veröffentlicht 07.04.2025 14:52:12
- Zuletzt bearbeitet 04.09.2025 17:43:33
tarteaucitron.js is a compliant and accessible cookie banner. A vulnerability was identified in tarteaucitron.js, allowing a user with high privileges (access to the site's source code or a CMS plugin) to enter a URL containing an insecure scheme suc...
CVE-2025-31475
- EPSS 1.33%
- Veröffentlicht 07.04.2025 14:48:25
- Zuletzt bearbeitet 21.10.2025 13:57:10
tarteaucitron.js is a compliant and accessible cookie banner. A vulnerability was identified in tarteaucitron.js prior to 1.20.1, where the addOrUpdate function, used for applying custom texts, did not properly validate input. This allowed an attacke...
CVE-2025-31138
- EPSS 0.23%
- Veröffentlicht 07.04.2025 14:44:40
- Zuletzt bearbeitet 21.10.2025 13:55:56
tarteaucitron.js is a compliant and accessible cookie banner. A vulnerability was identified in tarteaucitron.js prior to 1.20.1, where user-controlled inputs for element dimensions (width and height) were not properly validated. This allowed an atta...