Filters
Drupal DrupalFailure to strip the Cookie header on change in host or HTTP downgrade in Guzzle
7.5
First published (updated )
Drupal DrupalFix failure to strip Authorization header on HTTP downgrade in Guzzle
7.5
First published (updated )
composer/guzzlehttp/guzzleCross-domain cookie leakage in Guzzle
8.1
First published (updated )
Drupal DrupalThe Quick Edit module does not properly check entity access in some circumstances. This could result…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/drupal/coreUnder some circumstances, the Drupal core JSON:API module does not properly restrict access to certa…
7.5
First published (updated )
composer/drupal/coreThe QuickEdit module does not properly check access to fields in some circumstances, which can lead …
6.5
First published (updated )
Oracle Banking ApisHTML comments vulnerability allowing to execute JavaScript code
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Banking ApisAdvanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML
8.2
First published (updated )
Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )