Filters
Software
drupal drupal
711
drupal project issue tracking module
6
drupal print
5
drupal aggregation module
4
drupal everyblog
4
drupal project
4
drupal ubercart module
4
drupal content construction kit
3
drupal drupal project issue tracking
3
drupal shindig-integrator
3
drupal activity
2
drupal ajax checklist
2
drupal bibliography module
2
drupal brilliant gallery
2
drupal chatroom module
2
drupal core
2
drupal custom search module
2
drupal data
2
drupal database administration module
2
drupal drupal easylinks module
2
drupal help tip module
2
drupal imce module
2
drupal localization client
2
drupal logintoboggan module
2
drupal secure site module
2
drupal talk
2
drupal taxonomy autotagger module
2
drupal trailscout module
2
drupal user karma module
2
drupal views
2
drupal acidfree
1
drupal archive module
1
drupal asin field module
1
drupal atom module
1
drupal audio module
1
drupal authenticated user page caching
1
drupal avatar uploader
1
drupal bluemasters
1
drupal bueditor
1
drupal cck comment reference
1
drupal comment mail
1
drupal comment upload module
1
drupal commons
1
drupal context form alteration module
1
drupal cvs management and tracker
1
drupal devel module
1
drupal doubleclick for publishers
1
drupal drupal core
1
drupal drupal e-commerce module
1
drupal drupal mysite
1
drupal drupal pathauto module
1
drupal drupal project
1
drupal drupal pubcookie module
1
drupal drupal userreview module
1
drupal e-commerce module
1
drupal e-publish
1
drupal entity embed
1
drupal extended tracker
1
drupal faq
1
drupal feature module
1
drupal feedapi mapper
1
drupal fileshare module
1
drupal form mail module
1
drupal forward module
1
drupal fullname field for cck
1
drupal getid3
1
drupal header image
1
drupal internationalization
1
drupal invite module
1
drupal job search
1
drupal jquery ui checkboxradio drupal
1
drupal link module
1
drupal link to us
1
drupal localization server
1
drupal maestro
1
drupal magic tabs module
1
drupal mailhandler
1
drupal mailsave
1
drupal mayo
1
drupal mediafield module
1
drupal meta tags module
1
drupal modal frame
1
drupal mrbs module
1
drupal news page
1
drupal newsflash
1
drupal nivo slider
1
drupal node clone
1
drupal node hierarchy module
1
drupal node relativity module
1
drupal nodeaccess userreference
1
drupal nodefamily
1
drupal nodequeue
1
drupal openid
1
drupal organic groups menu
1
drupal organic groups module
1
drupal outline designer module
1
drupal pathauto module
1
drupal paypal node module
1
drupal petition node module
1
drupal plus1
1
drupal print module
1
drupal professional theme
1
drupal project issue file review
1
drupal protected node module
1
drupal quick tabs
1
drupal quiz
1
drupal randomizer
1
drupal realname
1
drupal recipe module
1
drupal responsive menus
1
drupal saml sp 2.0 single sign on
1
drupal search keyword module
1
drupal semantically interconnected online communities
1
drupal services module for drupal
1
drupal shoutbox
1
drupal simplecorp
1
drupal site profile directory module
1
drupal skeleton theme
1
drupal stock module
1
drupal storage api
1
drupal storm
1
drupal suggested terms module
1
drupal svg sanitizer
1
drupal tasklist
1
drupal taxonomy image module
1
drupal taxonomy manager
1
drupal taxonomy theme module
1
drupal textimage
1
drupal tinytax taxonomy block module
1
drupal token module
1
drupal tribune
1
drupal upload module
1
drupal userpoints module
1
drupal views builk operations
1
drupal views bulk operations
1
drupal views dynamic field
1
drupal webform module
1
drupal workflow
1
drupal zen
1
drupal-id counter module
1
drupalisme tinybox
1
drupalr flickr
1
composer/drupal/corecore/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (even when error logging is None) …
5.3
First published (updated )
composer/drupal/coreDrupal contains a vulnerability with improper handling of structural elements. If this vulnerability…
7.5
EPSS
0.05%
First published (updated )
Drupal DrupalDrupal core - Critical - Cache poisoning - SA-CORE-2023-006
7.5
First published (updated )
Drupal Responsive MenusResponsive Menus Configuration Setting responsive_menus.module responsive_menus_admin_form_submit cross site scripting
4.8
First published (updated )
Drupal DrupalThe file download facility doesn't sufficiently sanitize file paths in certain situations. This may …
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalDrupal 9.3 implemented a generic entity access API for entity revisions. However, this API was not c…
5.4
First published (updated )
Symfony TwigTwig may load a template outside a configured directory when using the filesystem loader
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/drupal/coreDrupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012
7.5
First published (updated )
composer/drupal/coreDrupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
6.5
First published (updated )
Drupal Jquery Ui Checkboxradio DrupaljQuery UI contains potential XSS vulnerability when refreshing a checkboxradio with an HTML-like initial text label
6.1
First published (updated )
Drupal DrupalFailure to strip the Cookie header on change in host or HTTP downgrade in Guzzle
7.5
First published (updated )
Drupal DrupalFix failure to strip Authorization header on HTTP downgrade in Guzzle
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal Saml Sp 2.0 Single Sign OnminiOrange SAML Authentication Bypass
9.8
First published (updated )
composer/guzzlehttp/guzzleCross-domain cookie leakage in Guzzle
8.1
First published (updated )
composer/guzzlehttp/psr7Improper Input Validation in guzzlehttp/psr7
7.5
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureCross-site Scripting in CKEditor4
5.4
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureRegular expression Denial of Service in dialog plugin
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalThe Quick Edit module does not properly check entity access in some circumstances. This could result…
6.5
First published (updated )
composer/drupal/coreUnder some circumstances, the Drupal core JSON:API module does not properly restrict access to certa…
7.5
First published (updated )
composer/drupal/coreThe QuickEdit module does not properly check access to fields in some circumstances, which can lead …
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Drupal DrupalDrupal core - Moderately critical - Cross site scripting - SA-CORE-2022-002
First published (updated )
Oracle Banking ApisHTML comments vulnerability allowing to execute JavaScript code
8.2
First published (updated )
Oracle Banking ApisAdvanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraPEAR Archive_Tar Improper Link Resolution Vulnerability
First published (updated )
CVE-2020-35191The official drupal docker images before 8.5.10-fpm-alpine (Alpine specific) contain a blank passwor…
10
First published (updated )
Fedoraproject FedoraPEAR Archive_Tar Deserialization of Untrusted Data Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/drupal/coreDrupal core Un-restricted Upload of File
First published (updated )
composer/drupal/drupalDrupal core - Moderately critical - Access bypass - SA-CORE-2020-008
5.3
First published (updated )
composer/drupal/coreAccess bypass in Drupal Core 8/9
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/drupal/coreDrupal core - Moderately critical - Information disclosure - SA-CORE-2020-011
7.5
First published (updated )
composer/drupal/coreDrupal core - Less critical - Access bypass - SA-CORE-2020-006
9.8
First published (updated )
composer/drupal/drupalDrupal core - Moderately critical - Cross Site Scripting - SA-CORE-2020-002
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.