Known Vulnerabilities for Google Analytics GA4 by Drupal
Listed below are 7 of the newest known vulnerabilities associated with "Google Analytics GA4" by "Drupal".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-22517 | Missing Authorization vulnerability in Passionate Brains GA4WP: Google Analytics for WordPress ga-for-wp allows Exploiting In... | Not Provided | 2026-01-08 | 2026-04-01 |
| CVE-2026-3529 | Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability in Drupal Google Analytics... | Not Provided | 2026-03-26 | 2026-03-27 |
| CVE-2025-57935 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ricky Dawn Bot Block &#... | Not Provided | 2025-09-22 | 2026-04-01 |
| CVE-2025-32282 | Cross-Site Request Forgery (CSRF) vulnerability in ShareThis ShareThis Dashboard for Google Analytics googleanalytics.This is... | Not Provided | 2025-04-10 | 2026-04-01 |
| CVE-2025-28962 | Missing Authorization vulnerability in stefanoai Advanced Google Universal Analytics advanced-google-universal-analytics allo... | Not Provided | 2025-08-14 | 2026-04-01 |
| CVE-2025-24750 | Missing Authorization vulnerability in Syed Balkhi ExactMetrics google-analytics-dashboard-for-wp allows Exploiting Incorrect... | Not Provided | 2025-01-24 | 2026-04-01 |
| CVE-2025-22515 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Simon Show Google Analy... | Not Provided | 2025-01-07 | 2026-04-01 |