Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Open Redirect		drupal/drupal>=6.0.0, <6.38>=7.0.0, <7.43>=8.0.0, <8.0.4Composer15 Feb 2016
  • H
Deserialization of Untrusted Data		drupal/drupal>=6.0.0, <6.38Composer15 Feb 2016
  • H
Brute Force		drupal/drupal>=6.0.0, <6.38>=7.0.0, <7.43Composer15 Feb 2016
  • H
Open Redirect		drupal/drupal>=6.0.0, <6.38Composer15 Feb 2016
  • H
Privilege Escalation		drupal/drupal>=6.0.0, <6.38>=7.0.0, <7.43Composer15 Feb 2016
  • H
Access Restriction Bypass		drupal/drupal>=6.0.0, <6.38Composer15 Feb 2016
  • M
HTTP Header Injection		drupal/drupal>=6.0.0, <6.38Composer15 Feb 2016
  • H
Malicious Package		drupal-fu>=0.0.0RubyGems17 Apr 2020
  • M
Cross-site Scripting (XSS)		drupal-pattern-lab/add-attributes-twig-extension>=0.0.0Composer9 Dec 2024
  • L
Cross-site Scripting (XSS)		drupal-pattern-lab/bem-twig-extension>=0.0.0Composer9 Dec 2024
  • M
Cross-site Scripting (XSS)		drupal-pattern-lab/unified-twig-extensions>=0.0.0Composer9 Dec 2024
  • H
Remote Code Execution (RCE)		drupal/tmgmt>=1.0.0, <1.7.0Composer21 May 2019
  • M
Access Restriction Bypass		drupal/workbench_moderation>=1.0.0, <1.4.0Composer21 May 2019
  • L
Cross-site Scripting (XSS)		pattern-lab/drupal-twig-components>=0.0.0Composer9 Dec 2024