{"uuid": "64a0868f-1e33-4ca2-8814-9b090774ae89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48923", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19603", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48923\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Toc.Js allows Cross-Site Scripting (XSS).This issue affects Toc.Js: from 0.0.0 before 3.2.1.\n\ud83d\udccf Published: 2025-06-26T13:31:56.839Z\n\ud83d\udccf Modified: 2025-06-26T13:31:56.839Z\n\ud83d\udd17 References:\n1. https://www.drupal.org/sa-contrib-2025-077", "creation_timestamp": "2025-06-26T13:51:06.000000Z"}