CVE-2022-50957 - Drupal avatar_uploader 7.x-1.0-beta8 Reflected XSS
CVE ID :CVE-2022-50957 Published : May 10, 2026, 1:16 p.m. | 1 hour, 48 minutes ago Description :Drupal avatar_uploader 7.x-1.0-beta8 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the file parameter. At
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Is Your Claude Code Safe From Base64? Inside 2026 AI Agent Attacks
- [CYBER] When prompts become shells: the tool registry is the attack surface
- [CYBER] Summer Travel Is a Mess. The Points Guy Tells Us How to Hack It
- [CYBER] CVE-2022-50970 - WordPress Plugin AAWP 3.16 Reflected XSS via tab Parameter
- [CYBER] CVE-2022-50969 - uBidAuction 2.0.1 mailingLog manage Reflected XSS
- [CYBER] CVE-2022-50968 - uBidAuction 2.0.1 auctions manage Reflected XSS