Fluid Attacks Database

Description

Drupal Matomo Analytics Cross-Site Request Forgery (CSRF) vulnerability Cross-Site Request Forgery (CSRF) vulnerability in Drupal Matomo Analytics allows Cross Site Request Forgery. This issue affects Matomo Analytics: from 0.0.0 before 1.24.0.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
packagist	drupal/matomo	>=0 <1.24.0	1.24.0

Aliases

1. CVE-2025-316802. NVD-2025-316803. OSV-2025-316804. GCVE-2025-316805. drupal.org

References

1. https://git.drupalcode.org/project/matomo

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.