Filter
AND
AND
AND

Drupal DrupalThe file download facility doesn't sufficiently sanitize file paths in certain situations. This may …

medium
6.5
First published (updated )
CVE-2023-31250

composer/drupal/coreXSS

medium
6.1
First published (updated )
CVE-2020-13666

composer/drupal/drupalDrupal core - Moderately critical - Cross Site Scripting - SA-CORE-2020-002

medium
6.1
First published (updated )
CVE-2020-13662

Oracle REST Data ServicesPotential XSS vulnerability in jQuery

medium
6.9
First published (updated )
CVE-2020-11023

Oracle Banking Digital ExperiencePotential XSS vulnerability in jQuery

medium
6.9
First published (updated )
CVE-2020-11022

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/drupal/coreDrupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004

medium
5.4
First published (updated )
CVE-2019-6341

Debian Debian LinuxPrivate file access bypass.

medium
5.3
First published (updated )
CVE-2017-6928

Debian Debian LinuxExternal link injection on 404 pages when linking to the current page.

medium
5.8
First published (updated )
CVE-2017-6932

composer/drupal/coreXSS

medium
6.1
First published (updated )
CVE-2017-6927

composer/drupal/coreXSS

medium
6.1
First published (updated )
CVE-2017-6929

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Drupal DrupalOpen redirect vulnerability in the Overlay module in Drupal 7.x before 7.41, the jQuery Update modul…

medium
6.1
First published (updated )
CVE-2015-7943

Drupal DrupalOpen redirect vulnerability in URL-related API functions in Drupal 6.x before 6.35 and 7.x before 7.…

medium
6.1
First published (updated )
CVE-2015-2750

composer/drupal/coreFiles uploaded by anonymous users into a private file system can be accessed by other anonymous users

medium
6.5
First published (updated )
CVE-2017-6922

Drupal DrupalConfirmation forms in Drupal 7.x before 7.52 make it easier for remote authenticated users to conduc…

medium
6.8
First published (updated )
CVE-2016-9451

Drupal DrupalInfoleak

medium
4.3
First published (updated )
CVE-2016-9449

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Drupal DrupalInfoleak

medium
5.3
First published (updated )
CVE-2016-6212

Drupal DrupalInfoleak

medium
5.3
First published (updated )
CVE-2016-3170

Drupal DrupalXSS

medium
4.3
First published (updated )
CVE-2015-6665

Drupal DrupalInfoleak

medium
5
First published (updated )
CVE-2015-6661

Drupal DrupalCSRF

medium
6.8
First published (updated )
CVE-2015-6660

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Drupal DrupalXSS

medium
4.3
First published (updated )
CVE-2015-6658

Drupal DrupalOpen redirect vulnerability in the Overlay module in Drupal 7.x before 7.38 allows remote attackers …

medium
5.8
First published (updated )
CVE-2015-3233

Drupal DrupalInfoleak

medium
4
First published (updated )
CVE-2015-3231

Drupal DrupalInput Validation

medium
4.3
First published (updated )
CVE-2015-3234

Drupal DrupalOpen redirect vulnerability in the Field UI module in Drupal 7.x before 7.38 allows remote attackers…

medium
5.8
First published (updated )
CVE-2015-3232

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Drupal DrupalOpen redirect vulnerability in Drupal 6.x before 6.35 and 7.x before 7.35 allows remote attackers to…

medium
6.1
First published (updated )
CVE-2015-2749

Drupal DrupalDrupal 6.x before 6.34 and 7.x before 7.34 allows remote attackers to hijack sessions via a crafted …

medium
6.8
First published (updated )
CVE-2014-9015

Drupal DrupalThe password hashing API in Drupal 7.x before 7.34 and the Secure Password Hashes (aka phpass) modul…

medium
5
First published (updated )
CVE-2014-9016

Debian Debian LinuxXSS

medium
6.1
First published (updated )
CVE-2010-5312

Drupal Drupalmodules/openid/xrds.inc in Drupal 6.x before 6.33 and 7.x before 7.31 allows remote attackers to hav…

medium
6.8
First published (updated )
CVE-2014-5267

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203