A vulnerability classified as problematic was found in Drupal Tagify up to 1.2.51. This issue affects some unknown processing. Such manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2026-11908. The attack may be performed from remote. There is no available exploit.