Civictheme Design System CVEs and Security Vulnerabilities

Filtered by vendor Drupal Subscriptions

Filtered by product Civictheme Design System Subscriptions

Switch to Advanced Search (Beta)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2025-12083	1 Drupal	2 Civictheme Design System, Drupal	2025-10-30	6.1 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal CivicTheme Design System allows Cross-Site Scripting (XSS).This issue affects CivicTheme Design System: from 0.0.0 before 1.12.0.
CVE-2025-12082	1 Drupal	2 Civictheme Design System, Drupal	2025-10-30	7.5 High
Incorrect Authorization vulnerability in Drupal CivicTheme Design System allows Forceful Browsing.This issue affects CivicTheme Design System: from 0.0.0 before 1.12.0.

Page 1 of 1.