Filter
AND
-Infinity
0
Trending
Oracle REST Data ServicesJQuery Cross-Site Scripting (XSS) Vulnerability
First published (updated )
Red Hat FedoraPEAR Archive_Tar Improper Link Resolution Vulnerability
First published (updated )
composer/drupal/coreDrupal Core Remote Code Execution Vulnerability
First published (updated )
composer/drupal/coreDrupal core Un-restricted Upload of File
First published (updated )
Red Hat FedoraPEAR Archive_Tar Deserialization of Untrusted Data Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Financial Services Liquidity Risk Measurement and ManagementXSS, Input Validation
First published (updated )
Oracle Banking Digital ExperiencePotential XSS vulnerability in jQuery
6.9
First published (updated )
composer/drupal/coreDrupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012
7.5
First published (updated )
composer/drupal/coreDrupal core - Moderately critical - Access bypass - SA-CORE-2023-005
6.5
First published (updated )
Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )
Oracle UnifierXSS in the `altField` option of the Datepicker widget
7.2
First published (updated )
composer/drupal/drupalPHAR stream wrapper Arbitrary PHP code execution
9.8
First published (updated )
composer/drupal/drupalthird-party PEAR Archive_Tar library updates
8
First published (updated )
composer/drupal/coreDrupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Debian LinuxExternal link injection on 404 pages when linking to the current page.
5.8
First published (updated )
DrupalThe OpenID module in Drupal 7.x before 7.16 allows remote OpenID servers to read arbitrary files via…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
DrupalThe Image module in Drupal 7.x before 7.19, when a private file system is used, does not properly re…
4.3
First published (updated )
composer/drupal/coreFiles uploaded by anonymous users into a private file system can be accessed by other anonymous users
6.5
First published (updated )
DrupalThe File module in Drupal 7.x before 7.29 does not properly check permissions to view files, which a…
4.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
DrupalDrupal 7.x before 7.3 allows remote attackers to bypass intended node_access restrictions via vector…
7.5
First published (updated )
Red Hat FedoraAn access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.