CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-0749

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Form Builder allows Cross-Site Scripting (XSS).This issue affects Drupal: from 7.X-1.0 through 7.X-1.22.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.6%

CVSS Severity

CVSS v3 Score 6.1

References

https://d7es.tag1.com/security-advisories/form-builder-less-critical-cross-site-scripting
https://www.herodevs.com/vulnerability-directory/cve-2026-0749

Products affected by CVE-2026-0749

Silence » Form Builder » Version: Any

cpe:2.3:a:silence:form_builder:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-0749

Products

Pricing

Contact Us