Drupal DrupalOpen redirect vulnerability in URL-related API functions in Drupal 6.x before 6.35 and 7.x before 7.…
Drupal DrupalBrute force amplification attacks via XML-RPC
Drupal DrupalForm API ignores access restrictions on submit buttons
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalOpen redirect via double-encoded 'destination' parameter
Drupal DrupalSaving user accounts can sometimes grant the user all roles
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalOpen redirect vulnerability in Drupal 6.x before 6.35 and 7.x before 7.35 allows remote attackers to…
Drupal Drupalmodules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to hav…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and …
Drupal DrupalThe Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalDrupal 6.x before 6.29 and 7.x before 7.24 uses the PHP mt_rand function to generate random numbers,…
Drupal DrupalThe printer friendly version functionality in the Book module in Drupal 6.x before 6.28 and 7.x befo…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalDrupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow…
Drupal DrupalThe OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, vi…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, vi…
Drupal DrupalThe OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, vi…
Drupal DrupalThe upload module in Drupal 5.x before 5.23 and 6.x before 6.18 does not properly support case-insen…
Drupal DrupalThe comment module in Drupal 5.x before 5.23 and 6.x before 6.18 allows remote authenticated users w…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.