Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Access Control BypassCVE-2023-31250
Affects drupal/core | Versions >=7.0.0, <7.96>=9.4, <9.4.14>=9.5, <9.5.8>=10.0, <10.0.8
Has fix
ComposerPublished 27 Apr 2023
  • M
Cross-site Scripting (XSS)CVE-2022-25276
Affects drupal/core | Versions >=8.0.0, <9.3.19>=9.4.0, <9.4.3
Has fix
ComposerPublished 27 Apr 2023
  • M
Access Restriction BypassCVE-2022-25278
Affects drupal/core | Versions >=8.0.0, <9.3.19>=9.4.0, <9.4.3
Has fix
ComposerPublished 23 Apr 2023
  • H
Arbitrary Code ExecutionCVE-2022-25277
Affects drupal/core | Versions <9.3.19>=9.4.0, <9.4.3
Has fix
ComposerPublished 26 Jul 2022
  • M
Information ExposureCVE-2022-25275
Affects drupal/core | Versions <9.3.19>=9.4.0, <9.4.3
Has fix
ComposerPublished 26 Jul 2022
  • M
Access Control BypassCVE-2022-25274
Affects drupal/core | Versions >=9.3.0, <9.3.12
Has fix
ComposerPublished 27 Apr 2022
  • H
Improper Input ValidationCVE-2022-25273
Affects drupal/core | Versions >=8.0.0, <9.2.18>=9.3.0, <9.3.12
Has fix
ComposerPublished 27 Apr 2022
  • M
Improper Input ValidationCVE-2022-25271
Affects drupal/core | Versions <9.2.13>=9.3.0, <9.3.6
Has fix
ComposerPublished 17 Feb 2022
  • M
Access Restriction BypassCVE-2022-25270
Affects drupal/core | Versions <9.2.13>=9.3.0, <9.3.6
Has fix
ComposerPublished 17 Feb 2022
  • M
Information ExposureCVE-2020-13676
Affects drupal/core | Versions <8.9.19>=9.1.0, <9.1.13>=9.2.0, <9.2.6
Has fix
ComposerPublished 13 Feb 2022
  • M
Improper Access ControlCVE-2020-13677
Affects drupal/core | Versions <8.9.19>=9.0.0, <9.1.3>=9.2.0, <9.2.6
Has fix
ComposerPublished 13 Feb 2022
  • M
Access Restriction BypassCVE-2020-13675
Affects drupal/core | Versions <8.9.19>=9.0.0, <9.1.13>=9.2.0, <9.2.6
Has fix
ComposerPublished 13 Feb 2022
  • M
Cross-site Request Forgery (CSRF)CVE-2020-13674
Affects drupal/core | Versions <8.9.19>=9.0.0, <9.1.13>=9.2.0, <9.2.6
Has fix
ComposerPublished 13 Feb 2022
  • M
Cross-site Scripting (XSS)CVE-2020-13672
Affects drupal/core | Versions <7.80>=8.0.0, <8.9.14>=9.0.0, <9.0.12>=9.1.0, <9.1.7
Has fix
ComposerPublished 13 Feb 2022
  • H
Arbitrary Code Execution
Affects drupal/core | Versions <8.8.12>=8.9.0, <8.9.10>=9.0.0, <9.0.9
Has fix
ComposerPublished 4 Dec 2020
  • H
Remote Code Execution (RCE)CVE-2020-13671
Affects drupal/core | Versions >=7.0.0, <7.74>=8.0.0, <8.1.0>=8.1.0, <8.2.0>=8.2.0, <8.3.0>=8.3.0, <8.4.0>=8.4.0, <8.5.0>=8.5.0, <8.6.0>=8.6.0, <8.7.0>=8.7.0, <8.8.0>=8.8.0, <8.8.11>=8.9.0, <8.9.9>=9.0.0, <9.0.8
Has fix
ComposerPublished 19 Nov 2020
  • H
Cross-site Request Forgery (CSRF)CVE-2020-13663
Affects drupal/core | Versions >=7.0.0, <7.72>=8.0.0, <8.8.8>=8.9.0, <8.9.1>=9.0.0, <9.0.1
Has fix
ComposerPublished 21 Jun 2020
  • M
Remote Code Execution (RCE)CVE-2020-13664
Affects drupal/core | Versions >=8.0.0, <8.8.8>=8.9.0, <8.9.1>=9.0.0, <9.0.1
Has fix
ComposerPublished 21 Jun 2020
  • M
Access Restriction BypassCVE-2020-13665
Affects drupal/core | Versions >=8.0.0, <8.8.8>=8.9.0, <8.9.1>=9.0.0, <9.0.1
Has fix
ComposerPublished 21 Jun 2020
  • M
Open Redirect
Affects drupal/core | Versions >=7.0.0, <7.70
Has fix
ComposerPublished 22 May 2020
  • M
Cross-site Scripting (XSS)CVE-2020-13662
Affects drupal/core | Versions >=7.0.0, <7.70>=8.0.0, <8.1.0>=8.1.0, <8.2.0>=8.2.0, <8.3.0>=8.3.0, <8.4.0>=8.4.0, <8.5.0>=8.5.0, <8.6.0>=8.6.0, <8.7.0>=8.7.0, <8.7.14>=8.8.0, <8.8.6
Has fix
ComposerPublished 22 May 2020
  • M
Denial of Service (DoS)
Affects drupal/core | Versions <8.7.11>=8.8.0, <8.8.1
Has fix
ComposerPublished 22 Dec 2019
  • M
Access Restriction Bypass
Affects drupal/core | Versions <8.7.11>=8.8.0, <8.8.1
Has fix
ComposerPublished 22 Dec 2019
  • M
Arbitrary File Upload
Affects drupal/core | Versions <8.7.11>=8.8.0, <8.8.1
Has fix
ComposerPublished 22 Dec 2019
  • C
Improper Access ControlCVE-2019-6342
Affects drupal/core | Versions >=8.7.4, <8.7.5
Has fix
ComposerPublished 18 Jul 2019
  • M
Cross-site Scripting (XSS)CVE-2019-10909
Affects drupal/core | Versions <8.5.15>=8.6.0, <8.6.15
Has fix
ComposerPublished 24 Apr 2019
  • M
Arbitrary Code ExecutionCVE-2019-10910
Affects drupal/core | Versions <8.5.15>=8.6.0, <8.6.15
Has fix
ComposerPublished 24 Apr 2019
  • M
Access Control BypassCVE-2019-10911
Affects drupal/core | Versions <8.5.15>=8.6.0, <8.6.16
Has fix
ComposerPublished 24 Apr 2019
  • M
Cross-site Scripting (XSS)CVE-2019-6341
Affects drupal/core | Versions >=7.0, <7.65>=8.5, <8.5.14>=8.6, <8.6.13
Has fix
ComposerPublished 26 Mar 2019
  • M
Cross-site Scripting (XSS)
Affects drupal/core | Versions >=7.0, <7.65>=8.0.0, <8.5.14>=8.6.0, <8.6.13
Has fix
ComposerPublished 21 Mar 2019