Back to search
CVE-2025-47705
Published: May 14, 2025
Modified: Feb 10, 2026
PUBLISHED
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal IFrame Remove Filter allows Cross-Site Scripting (XSS).This issue affects IFrame Remove Filter: from 2.0.0 before 2.0.5, from 7.X-1.0 through 7.X-1.5, from 1.0 through 1.2.
| Vendor | Product | Versions |
|---|---|---|
Drupal | IFrame Remove Filter | affected 7.x-1.0 - <= 7.x-1.5affected 1.0 - <= 1.2affected 2.0.0 - < 2.0.5 |
Weaknesses (CWE)
References
https://www.drupal.org/sa-contrib-2025-051
vendor-advisory
https://www.herodevs.com/vulnerability-directory/cve-2025-47705
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now