Filter
-Infinity
0

Trending

Last week
Last month
Last year

composer/drupal/coreDrupal core - Moderately critical - Gadget Chain - SA-CORE-2025-003

high
7.5
EPSS
0.06%
First published (updated )
CVE-2025-31674

composer/drupal/coreDrupal core - Critical - Cross site scripting - SA-CORE-2025-001

medium
6.1
EPSS
0.03%
First published (updated )
CVE-2025-3057

composer/drupal/coreDrupal core - Moderately critical - Cross Site Scripting - SA-CORE-2025-004

EPSS
0.04%
First published (updated )
CVE-2025-31675

composer/drupal/coreDrupal core - Moderately critical - Access bypass - SA-CORE-2025-002

EPSS
0.02%
First published (updated )
CVE-2025-31673

Oracle REST Data ServicesJQuery Cross-Site Scripting (XSS) Vulnerability

medium
6.9
Exploited
First published (updated )
CVE-2020-11023

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/drupal/coreDrupal Core Remote Code Execution Vulnerability

critical
9.8
Exploited
First published (updated )
CVE-2018-7600

composer/drupal/coreDrupal Core Remote Code Execution Vulnerability

critical
9.8
Exploited
First published (updated )
CVE-2018-7602

composer/drupal/coreDrupal core Un-restricted Upload of File

high
8.8
Exploited
First published (updated )
CVE-2020-13671

Red Hat FedoraPEAR Archive_Tar Deserialization of Untrusted Data Vulnerability

high
7.8
Exploited
First published (updated )
CVE-2020-28949

composer/drupal/coreDrupal Core Remote Code Execution Vulnerability

high
8.1
Exploited
First published (updated )
CVE-2019-6340

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Financial Services Liquidity Risk Measurement and ManagementXSS, Input Validation

high
7.5
First published (updated )
CVE-2019-11358

Oracle Banking Digital ExperiencePotential XSS vulnerability in jQuery

medium
6.9
First published (updated )
CVE-2020-11022

Red Hat FedoraPEAR Archive_Tar Improper Link Resolution Vulnerability

high
7.5
Exploited
First published (updated )
CVE-2020-36193

composer/drupal/coreInput Validation

high
7.5
First published (updated )
CVE-2022-25273

composer/drupal/coreXSS

medium
6.1
First published (updated )
CVE-2022-25276

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/drupal/coreMalicious File Upload

high
7.2
First published (updated )
CVE-2022-25277

composer/drupal/coreDrupal core - Moderately critical - Access Bypass - SA-CORE-2022-013

medium
6.5
First published (updated )
CVE-2022-25278

composer/drupal/coreDrupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012

high
7.5
First published (updated )
CVE-2022-25275

composer/drupal/coreDrupal 9.3 implemented a generic entity access API for entity revisions. However, this API was not c…

medium
5.4
First published (updated )
CVE-2022-25274

composer/drupal/coreDrupal core - Moderately critical - Access bypass - SA-CORE-2023-005

medium
6.5
First published (updated )
CVE-2023-31250

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

DrupalResponsive and off-canvas menu - Moderately critical - Access bypass - SA-CONTRIB-2024-030

medium
5.3
First published (updated )
CVE-2024-13266

DrupalPOST File - Critical - Cross Site Scripting, Arbitrary PHP code execution - SA-CONTRIB-2024-060

medium
5.4
First published (updated )
CVE-2024-13294

DrupalPOST File - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2024-059

low
3.1
First published (updated )
CVE-2024-13293

DrupalImage Sizes - Moderately critical - Access bypass - SA-CONTRIB-2024-023

high
7.5
First published (updated )
CVE-2024-13259

DrupalDrupal Symfony Mailer Lite - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2024-014

high
8.8
First published (updated )
CVE-2024-13250

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

DrupalFacets - Critical - Cross Site Scripting - SA-CONTRIB-2024-047

medium
6.1
First published (updated )
CVE-2024-13283

Drupal 11.1End of life

First published (updated )
EOL-drupal-11.1

Drupal 11.1End of life

First published (updated )
latest-version-drupal-11.1

Drupal 10.4End of life

First published (updated )
latest-version-drupal-10.4

Drupal 10.4End of life

First published (updated )
EOL-drupal-10.4

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203