MidnightBSD

Advisories for umami

CVE-2025-10931

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Umami Analytics allows Cross-Site Scripting (XSS).This issue affects Umami Analytics: from 0.0.0 before 1.0.1.

Products Affected

Vendor Product Version
umami umami_analytics *