EIP-2026-106588

PRE-CVE

Drupal avatar_uploader v7.x-1.0-beta8 - Cross Site Scripting (XSS)

Title source: legacy

Description

Drupal avatar_uploader v7.x-1.0-beta8 - Cross Site Scripting (XSS)

Exploits (1)

exploitdb WORKING POC

by Milad karimi · textwebappsphp

https://www.exploit-db.com/exploits/50841

View Code ZIP pw:eip

Details

Status pre_cve

Tracked Since Feb 18, 2026