CVE-2025-48939
- EPSS 0.02%
- Veröffentlicht 03.07.2025 16:26:31
- Zuletzt bearbeitet 21.10.2025 13:56:42
tarteaucitron.js is a compliant and accessible cookie banner. Prior to version 1.22.0, a vulnerability was identified in tarteaucitron.js where document.currentScript was accessed without verifying that it referenced an actual <script> element. If an...
CVE-2025-31476
- EPSS 0.04%
- Veröffentlicht 07.04.2025 14:52:12
- Zuletzt bearbeitet 04.09.2025 17:43:33
tarteaucitron.js is a compliant and accessible cookie banner. A vulnerability was identified in tarteaucitron.js, allowing a user with high privileges (access to the site's source code or a CMS plugin) to enter a URL containing an insecure scheme suc...
CVE-2025-31475
- EPSS 0.26%
- Veröffentlicht 07.04.2025 14:48:25
- Zuletzt bearbeitet 21.10.2025 13:57:10
tarteaucitron.js is a compliant and accessible cookie banner. A vulnerability was identified in tarteaucitron.js prior to 1.20.1, where the addOrUpdate function, used for applying custom texts, did not properly validate input. This allowed an attacke...
CVE-2025-31138
- EPSS 0.04%
- Veröffentlicht 07.04.2025 14:44:40
- Zuletzt bearbeitet 21.10.2025 13:55:56
tarteaucitron.js is a compliant and accessible cookie banner. A vulnerability was identified in tarteaucitron.js prior to 1.20.1, where user-controlled inputs for element dimensions (width and height) were not properly validated. This allowed an atta...