Filter
AND
AND
Versions
7.0
23
8.0.0
16
7.0-alpha1
10
7.0-alpha2
10
7.0-alpha3
10
7.0-alpha4
10
7.0-alpha5
10
7.0-alpha6
10
7.0-alpha7
10
7.0-beta1
10
7.0-beta2
10
7.0-beta3
10
7.0-dev
10
7.0-rc1
10
7.0-rc2
10
7.0-rc3
10
7.0-rc4
10
7.1
10
7.2
10
7.10
9
7.11
9
7.12
9
7.13
9
7.14
9
7.15
9
7.16
9
7.17
9
7.18
9
7.19
9
7.20
9
7.21
9
7.22
9
7.23
9
9.2.0
9
9.3.0
9
6.0
8
6.0-beta2
8
6.0-beta3
8
6.0-beta4
8
6.0-dev
8
6.0-rc1
8
6.0-rc2
8
6.0-rc3
8
6.0-rc4
8
6.1
8
6.10
8
6.11
8
6.12
8
6.13
8
6.14
8
6.15
8
6.16
8
6.17
8
6.18
8
6.19
8
6.2
8
6.20
8
6.21
8
6.22
8
6.23
8
6.24
8
6.25
8
6.26
8
6.27
8
6.28
8
7.24
8
7.3
8
7.4
8
7.5
8
7.6
8
7.7
8
7.8
8
7.9
8
7.x-dev
8
6.0-beta1
7
6.29
7
6.3
7
6.30
7
6.31
7
6.32
7
6.33
7
6.34
7
6.35
7
6.36
7
6.37
7
6.4
7
6.5
7
6.6
7
6.7
7
6.8
7
7.25
7
7.26
7
7.27
7
7.28
7
7.29
7
7.30
7
7.33
7
7.34
7
7.35
7
7.36
7
7.37
7
7.38
7
4.6.0
6
6.9
6
7.31
6
7.32
6
7.40
6
7.41
6
8.9.0
6
9.0.0
6
7.42
5
8.0.1
5
8.0.2
5
8.0.3
5
8.2.0
5
8.2.0-beta1
5
8.2.0-beta2
5
8.2.0-beta3
5
8.2.0-rc1
5
8.2.0-rc2
5
8.2.1
5
9.1.0
5
4.6.1
4
4.6.2
4
4.6.3
4
4.6.4
4
4.6.5
4
4.6.6
4
8.0.0-alpha10
4
8.0.0-alpha11
4
8.0.0-alpha12
4
8.0.0-alpha13
4
8.0.0-alpha14
4
8.0.0-alpha15
4
8.0.0-alpha2
4
8.0.0-alpha3
4
8.0.0-alpha4
4
8.0.0-alpha5
4
8.0.0-alpha6
4
8.0.0-alpha7
4
8.0.0-alpha8
4
8.0.0-alpha9
4
8.0.0-beta1
4
8.0.0-beta10
4
8.0.0-beta11
4
8.0.0-beta12
4
8.0.0-beta13
4
8.0.0-beta14
4
8.0.0-beta15
4
8.0.0-beta16
4
8.0.0-beta2
4
8.0.0-beta3
4
8.0.0-beta4
4
8.0.0-beta6
4
8.0.0-beta7
4
8.0.0-beta9
4
8.0.0-rc1
4
8.0.0-rc2
4
8.0.0-rc3
4
8.0.0-rc4
4
8.2.2
4
8.5.0
4
8.6.0
4
8.8.0
4
4.6
3
4.6.7
3
4.7.0
3
4.7.1
3
5.0
3
5.1
3
5.2
3
8.0.4
3
8.0.5
3
8.0.6
3
8.1.0
3
8.1.0-beta1
3
8.1.0-beta2
3
8.1.0-rc1
3
8.1.1
3
8.1.10
3
8.1.2
3
8.1.3
3
8.1.4
3
8.1.5
3
8.1.6
3
8.1.7
3
8.1.8
3
8.1.9
3
8.2.3
3
8.2.4
3
8.2.5
3
8.2.6
3
9.4.0
3
4.4.0
2
4.4.1
2
4.4.2
2
4.5.1
2
4.5.2
2
4.6.8
2
4.6.9
2
4.7.2
2
4.7.3
2
5.1_rev1.1
2
5.3
2
5.4
2
5.7
2
8.4.0
2
9.4.0-alpha1
2
9.4.0-beta1
2
9.4.0-rc1
2
10.0.0
1
10.1.0
1
4.0.0
1
4.1.0
1
4.2.0_rc
1
4.4.3
1
4.5
1
4.5.0
1
4.5.3
1
4.5.4
1
4.5.5
1
4.5.6
1
4.5.7
1
4.5.8
1
4.6.10
1
4.6.11
1
4.7
1
4.7.4
1
4.7.5
1
4.7.6
1
4.7.7
1
4.7.8
1
4.7_rev1.15
1
5.0-beta1
1
5.0-beta2
1
5.0-rc1
1
5.0-rc2
1
5.10
1
5.5
1
5.5.
1
5.6
1
5.8
1
5.9
1
6.0-rc-1
1
6.0-rc-2
1
6.0-rc-3
1
6.0-rc-4
1
7.0.0
1
7.39
1
7.43
1
8.2.7
1
8.3.0
1
8.3.0-alpha1
1
8.3.0-beta1
1
8.3.0-rc1
1
8.3.0-rc2
1
8.7.0
1
8.8
1
8.9
1
9.0
1
9.3.6
1
composer/drupal/coreDrupal contains a vulnerability with improper handling of structural elements. If this vulnerability…
7.5
EPSS
0.05%
First published (updated )
Drupal DrupalDrupal core - Critical - Cache poisoning - SA-CORE-2023-006
7.5
First published (updated )
symfony TwigTwig may load a template outside a configured directory when using the filesystem loader
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/drupal/coreDrupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012
7.5
First published (updated )
Drupal DrupalFailure to strip the Cookie header on change in host or HTTP downgrade in Guzzle
7.5
First published (updated )
Drupal DrupalFix failure to strip Authorization header on HTTP downgrade in Guzzle
7.5
First published (updated )
composer/guzzlehttp/guzzleCross-domain cookie leakage in Guzzle
8.1
First published (updated )
composer/guzzlehttp/psr7Improper Input Validation in guzzlehttp/psr7
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Financial Services Analytical Applications InfrastructureRegular expression Denial of Service in dialog plugin
7.5
First published (updated )
composer/drupal/coreUnder some circumstances, the Drupal core JSON:API module does not properly restrict access to certa…
7.5
First published (updated )
Oracle Banking APIsHTML comments vulnerability allowing to execute JavaScript code
8.2
First published (updated )
Oracle Banking APIsAdvanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
oracle primavera gatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget
7.2
First published (updated )
Fedoraproject FedoraPEAR Archive_Tar Improper Link Resolution Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraPEAR Archive_Tar Deserialization of Untrusted Data Vulnerability
First published (updated )
composer/drupal/coreDrupal core Un-restricted Upload of File
First published (updated )
composer/drupal/coreDrupal core - Moderately critical - Information disclosure - SA-CORE-2020-011
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
FedoraAn access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability …
7.5
First published (updated )
SensioLabs SymfonyCVE-2019-10911: Add a separator in the remember me cookie hash
7.5
First published (updated )
Oracle Application Testing SuiteXSS, Input Validation
7.5
First published (updated )
composer/drupal/coreDrupal Core Remote Code Execution Vulnerability
First published (updated )
composer/drupal/drupalthird-party PEAR Archive_Tar library updates
8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.