Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Detection of Error Condition Without Action	drupal/core>=10.0.0, <10.2.10	Composer	6 Dec 2024
M Information Exposure	drupal/core>=8.0.0, <10.2.9>=10.3.0, <10.3.6>=11.0.0, <11.0.5	Composer	30 Aug 2024
H Denial of Service (DoS)	drupal/core>=10.1.0, <10.1.8>=10.2.0, <10.2.2	Composer	26 Apr 2024
M Cross-site Scripting (XSS)	drupal/core<8.8.10>=8.9.0, <8.9.6>=9.0.0, <9.0.6	Composer	24 Apr 2024
M URL Redirection to Untrusted Site ('Open Redirect')	drupal/core<8.2.3	Composer	24 Apr 2024
H Improper Handling of Structural Elements Leading to Denial of Service (DoS)	drupal/core<10.0.0	Composer	16 Jan 2024
M Information Exposure	drupal/core>=8.7.0, <9.5.11>=10.0.0, <10.0.11>=10.1.0, <10.1.4	Composer	29 Sept 2023
M Access Control Bypass	drupal/core>=7.0.0, <7.96>=9.4, <9.4.14>=9.5, <9.5.8>=10.0, <10.0.8	Composer	27 Apr 2023
M Cross-site Scripting (XSS)	drupal/core>=8.0.0, <9.3.19>=9.4.0, <9.4.3	Composer	27 Apr 2023
M Access Restriction Bypass	drupal/core>=8.0.0, <9.3.19>=9.4.0, <9.4.3	Composer	23 Apr 2023
H Arbitrary Code Execution	drupal/core<9.3.19>=9.4.0, <9.4.3	Composer	26 Jul 2022
M Information Exposure	drupal/core<9.3.19>=9.4.0, <9.4.3	Composer	26 Jul 2022
M Access Control Bypass	drupal/core>=9.3.0, <9.3.12	Composer	27 Apr 2022
H Improper Input Validation	drupal/core>=8.0.0, <9.2.18>=9.3.0, <9.3.12	Composer	27 Apr 2022
M Improper Input Validation	drupal/core<9.2.13>=9.3.0, <9.3.6	Composer	17 Feb 2022
M Access Restriction Bypass	drupal/core<9.2.13>=9.3.0, <9.3.6	Composer	17 Feb 2022
M Information Exposure	drupal/core<8.9.19>=9.1.0, <9.1.13>=9.2.0, <9.2.6	Composer	13 Feb 2022
M Improper Access Control	drupal/core<8.9.19>=9.0.0, <9.1.3>=9.2.0, <9.2.6	Composer	13 Feb 2022
M Access Restriction Bypass	drupal/core<8.9.19>=9.0.0, <9.1.13>=9.2.0, <9.2.6	Composer	13 Feb 2022
M Cross-site Request Forgery (CSRF)	drupal/core<8.9.19>=9.0.0, <9.1.13>=9.2.0, <9.2.6	Composer	13 Feb 2022
M Cross-site Scripting (XSS)	drupal/core<7.80>=8.0.0, <8.9.14>=9.0.0, <9.0.12>=9.1.0, <9.1.7	Composer	13 Feb 2022
H Arbitrary Code Execution	drupal/core<8.8.12>=8.9.0, <8.9.10>=9.0.0, <9.0.9	Composer	4 Dec 2020
H Remote Code Execution (RCE)	drupal/core>=7.0.0, <7.74>=8.0.0, <8.1.0>=8.1.0, <8.2.0>=8.2.0, <8.3.0>=8.3.0, <8.4.0>=8.4.0, <8.5.0>=8.5.0, <8.6.0>=8.6.0, <8.7.0>=8.7.0, <8.8.0>=8.8.0, <8.8.11>=8.9.0, <8.9.9>=9.0.0, <9.0.8	Composer	19 Nov 2020
H Cross-site Request Forgery (CSRF)	drupal/core>=7.0.0, <7.72>=8.0.0, <8.8.8>=8.9.0, <8.9.1>=9.0.0, <9.0.1	Composer	21 Jun 2020
M Remote Code Execution (RCE)	drupal/core>=8.0.0, <8.8.8>=8.9.0, <8.9.1>=9.0.0, <9.0.1	Composer	21 Jun 2020
M Access Restriction Bypass	drupal/core>=8.0.0, <8.8.8>=8.9.0, <8.9.1>=9.0.0, <9.0.1	Composer	21 Jun 2020
M Open Redirect	drupal/core>=7.0.0, <7.70	Composer	22 May 2020
M Cross-site Scripting (XSS)	drupal/core>=7.0.0, <7.70>=8.0.0, <8.1.0>=8.1.0, <8.2.0>=8.2.0, <8.3.0>=8.3.0, <8.4.0>=8.4.0, <8.5.0>=8.5.0, <8.6.0>=8.6.0, <8.7.0>=8.7.0, <8.7.14>=8.8.0, <8.8.6	Composer	22 May 2020
M Denial of Service (DoS)	drupal/core<8.7.11>=8.8.0, <8.8.1	Composer	22 Dec 2019
M Access Restriction Bypass	drupal/core<8.7.11>=8.8.0, <8.8.1	Composer	22 Dec 2019

APPLICATION

OPERATING SYSTEM