CVE-2026-12535

Summary

Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Drupal Formatter Field allows Object Injection. This issue affects Formatter Field versions: from 0.0.0 to 2.0.0.

Affected Software

VendorProductVersion RangeStatus
DrupalFormatter Field0.0.0 < 2.0.0affected

Weaknesses

  • CWE-915: CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes

References