[CVE ID]

CVE-2025-44141

[PRODUCT]

Backdrop CMS v1.30.1

[VERSION]

Backdrop CMS v1.30.1

[PROBLEM TYPE]

Reflected XSS

[DESCRIPTION]

In Backdrop CMS version 1.30.1, there is a reflected XSS vulnerability in /node/add/card via parameter body[und][0][value]