Drupal Term Reference Tree
1 CVEs affecting Drupal Term Reference Tree. Latest disclosed: 2026-05-21. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-4093 | Medium | 5.4 | 2026-05-21 | In the Drupal 7 Term Reference Tree module, two stored XSS vectors exist in the widget/formatter rendering pipeline. Vector A (token display templates): When… |