Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

drupal/core

packagist

Drupal is an open source content management platform powering millions of websites and applications.

View on github.com · View on packagist.org

High Security Advisories for drupal/core in packagist Clear Filters

High
10 months ago

Drupal core contains a potential PHP Object Injection vulnerability GSA_kwCzR0hTQS1ndmYyLTJmNGctanFmNM4ABCNl

packagist drupal/drupal, drupal/core-recommended, drupal/core
High
10 months ago

Drupal core contains a potential PHP Object Injection vulnerability GSA_kwCzR0hTQS13NnJ4LTlnMngtbWc1Z84ABCNg

packagist drupal/drupal, drupal/core-recommended, drupal/core
High
10 months ago

Drupal core Denial of Service GSA_kwCzR0hTQS14cTU0LXg1NG0tdmNweM4ABCFO

packagist drupal/core
High
over 1 year ago

Drupal core Arbitrary PHP code execution GSA_kwCzR0hTQS1neHhqLWc5djgtdzI4cM4AA8HM

packagist drupal/core
High
over 1 year ago

Drupal core Multiple vulnerabilities due to the use of the third-party library Archive_Tar GSA_kwCzR0hTQS05OGg5LTcyN20tNDRxds4AA8HJ

packagist drupal/core
High
over 2 years ago

Improper input validation in Drupal core GSA_kwCzR0hTQS1nMzZoLTRqcjYtcW1tOc4AAy-o

packagist drupal/core
High
about 3 years ago

Drupal core arbitrary PHP code execution GSA_kwCzR0hTQS02OTU1LTY3aG0tdmpqcc4AAt2o

packagist drupal/core
High
about 3 years ago

Drupal core Information Disclosure vulnerability GSA_kwCzR0hTQS14aDN2LTZmOWotd3h3M84AAt2d

packagist drupal/core
High
over 3 years ago

Drupal Core Cross-Site Request Forgery (CSRF) vulnerability GSA_kwCzR0hTQS1tNjQ4LWhwZjgtcWNqd84AAozw

packagist drupal/core
High
over 3 years ago

Drupal Core Arbitrary PHP code execution vulnerability GSA_kwCzR0hTQS14NzJmLWdnanctdjV4aM4AAoYA

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Access Control Bypass GSA_kwCzR0hTQS05NnZ4LXFmMjgtNmY4bc4AAdq5

packagist drupal/core
High
over 3 years ago

Drupal Form API ignores access restrictions on submit buttons GSA_kwCzR0hTQS00Z2g1LTNocWoteDNwas4AAdZP

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal saving user accounts can sometimes grant the user all roles GSA_kwCzR0hTQS1xM3A5LTg3Mjgtd3E3eM4AAdZM

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Brute force amplification attacks via XML-RPC GSA_kwCzR0hTQS1oM3I5LXBqbXItZjkzOM4AAdYi

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Open redirect vulnerability in the drupal_goto function GSA_kwCzR0hTQS1neHd4LWM3bTgtZjk1aM4AAdYo

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal File upload access bypass and denial of service GSA_kwCzR0hTQS13MnBqLWM4eDUtanZnMs4AAdXp

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal arbitrary code execution GSA_kwCzR0hTQS02OWc4LWc5anEtNzR2N84AAdW6

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Saving user accounts can sometimes grant the user all roles GSA_kwCzR0hTQS1mcnFmLTlxcjQtNnZ4Zs4AAc9G

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Incorrect cache context on password reset page GSA_kwCzR0hTQS05OHc1LXdxcDktdzQ2Ns4AAc69

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Cross-Site Request Forgery (CSRF) GSA_kwCzR0hTQS1neHhxLWZoYzctM2p2Oc4AAbOV

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Comment reply form allows access to restricted content GSA_kwCzR0hTQS0ycDI4LTVtdnAtMmoycs4AAXMk

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal access control bypass vulnerability GSA_kwCzR0hTQS02aHBqLTl4ajctMmp4eM4AASZo

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal access bypass vulnerability GSA_kwCzR0hTQS0zMzI3LWpyOTMtN2hxM84AASZL

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Remote code execution GSA_kwCzR0hTQS1yaHg5LTNxZjctcjNqN84AASYD

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal editor module incorrectly checks access to inline private files GSA_kwCzR0hTQS13N3F4LXZ3cjktMmozcs4AASX9

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal REST API can bypass comment approval GSA_kwCzR0hTQS1wOGc2LTVtZzctOXI1cc4AARZN

packagist drupal/drupal, drupal/core
High
over 3 years ago

Drupal Core Remote Code Execution Vulnerability GSA_kwCzR0hTQS0zZ3g2LWg1N2gtcm0yN84AAQKY

packagist drupal/drupal, drupal/core
High
over 3 years ago

Improper input validation in Drupal core GSA_kwCzR0hTQS1mbWZ2LXg4bXAtNTc2N80s5g

packagist drupal/core
High
over 3 years ago

Drupal core access bypass vulnerability GSA_kwCzR0hTQS0zeHIzLXBoanAtZzZwMs0rPA

packagist drupal/core
High
almost 4 years ago

Drupal core Unrestricted Upload of File with Dangerous Type GSA_kwCzR0hTQS02OGpjLXYyN2gtdmhtd80WbQ

packagist drupal/drupal, drupal/core

Filter by Severity

Moderate 52 High 30 Critical 14 Low 2