1
CVEs
0
Critical
0
High
0
KEV
0
PoC
0
Unpatched C/H
100.0%
Patch Rate
0.0%
Avg EPSS
Severity Breakdown
CRITICAL
0
HIGH
0
MEDIUM
1
LOW
0
Monthly CVE Trend
Affected Products (30)
PHP
14
Open Social
8
Miniorange 2fa
6
Artificial Intelligence
5
Two Factor Authentication
4
One Time Password
3
Cookies Consent Management
3
AI / ML
2
Authenticator Login
2
Post File
2
Paragraphs Table
2
Quick Node Block
2
Monster Menus
2
Email Tfa
2
File Entity
2
Node Access Rebuild Progressive
2
Google Tag
2
Simple Klaro
2
Commerce Alphabank Redirect
1
Coffee
1
Baguettebox Js
1
At Internet Smarttag
1
Ckeditor 4
1
Central Authentication System Server
1
Ckeditor 5 Premium Features
1
Ckeditor5 Youtube
1
At Internet Piano Analytics
1
Colorbox
1
Advanced Varnish
1
Admin Audit Trail
1
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2026-3212 | A Cross-Site Scripting (XSS) vulnerability exists in Drupal Tagify module versions prior to 1.2.49, stemming from improper neutralization of user input during web page generation. An attacker can inject malicious scripts that execute in the context of other users' browsers, potentially leading to session hijacking, credential theft, or malware distribution. This vulnerability affects all Tagify installations from version 0.0.0 through 1.2.48, and patch availability has been confirmed through the Drupal security advisory. | MEDIUM | 5.4 | 0.0% | 27 |
|