Drupal DrupalOpen redirect vulnerability in the Overlay module in Drupal 7.x before 7.41, the jQuery Update modul…
Drupal DrupalOpen redirect vulnerability in URL-related API functions in Drupal 6.x before 6.35 and 7.x before 7.…
Drupal DrupalConfirmation forms in Drupal 7.x before 7.52 make it easier for remote authenticated users to conduc…
Drupal DrupalSaving user accounts can sometimes grant the user all roles
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalBrute force amplification attacks via XML-RPC
Drupal DrupalFile upload access bypass and denial of service
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalSaving user accounts can sometimes grant the user all roles
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalOpen redirect vulnerability in the Overlay module in Drupal 7.x before 7.38 allows remote attackers …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalOpen redirect vulnerability in the Field UI module in Drupal 7.x before 7.38 allows remote attackers…
Drupal DrupalOpen redirect vulnerability in Drupal 6.x before 6.35 and 7.x before 7.35 allows remote attackers to…
Drupal Drupalmodules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to hav…
Drupal DrupalThe Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and …
Drupal DrupalThe Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe File module in Drupal 7.x before 7.29 does not properly check permissions to view files, which a…
Drupal DrupalThe OpenID module in Drupal 6.x before 6.30 and 7.x before 7.26 allows remote OpenID users to authen…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe Taxonomy module in Drupal 7.x before 7.26, when upgraded from an earlier version of Drupal, does…
Drupal DrupalDrupal 6.x before 6.29 and 7.x before 7.24 uses the PHP mt_rand function to generate random numbers,…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe File module in Drupal 7.x before 7.11, when using unspecified field access modules, allows remot…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe printer friendly version functionality in the Book module in Drupal 6.x before 6.28 and 7.x befo…
Drupal DrupalThe Image module in Drupal 7.x before 7.19, when a private file system is used, does not properly re…
Drupal DrupalThe Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service (CPU…
Drupal DrupalDrupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalDrupal 7.x before 7.16 allows remote attackers to obtain sensitive information and possibly re-insta…
Drupal DrupalThe OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via…
Drupal DrupalThe image module in Drupal 7.x before 7.14 does not properly check permissions when caching derivati…
Drupal DrupalThe forum list in Drupal 7.x before 7.14 does not properly check user permissions for unpublished fo…
Drupal DrupalAlgorithmic complexity vulnerability in the _filter_url function in the text filtering system (modul…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.