See the full list of npm packages affected by the "Mastra Supply Chain Compromise - June 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- M
Deserialization of Untrusted DataCVE-2020-28948
Affects drupal7 | Versions <7.44-1ubuntu1~16.04.0+esm2
Has fix
ubuntu:16.04Published 19 Aug 2025
- L
Cross-site Scripting (XSS)CVE-2020-11022
Affects drupal7 | Versions <7.44-1ubuntu1~16.04.0+esm3
Has fix
ubuntu:16.04Published 22 Jul 2025
- H
Cross-site Scripting (XSS)CVE-2020-11023
Affects drupal7 | Versions <7.44-1ubuntu1~16.04.0+esm3
Has fix
ubuntu:16.04Published 22 Jul 2025
- M
Directory TraversalCVE-2019-11831
Affects drupal7 | Versions *
No fix available
ubuntu:16.04Published 1 Jun 2025
- M
Incorrect AuthorizationCVE-2023-31250
Affects drupal7 | Versions *
No fix available
ubuntu:16.04Published 1 Jun 2025
- H
Unrestricted Upload of File with Dangerous TypeCVE-2020-13671
Affects drupal7 | Versions <7.44-1ubuntu1~16.04.0+esm2
Has fix
ubuntu:16.04Published 1 Jun 2025
- H
Arbitrary Code InjectionCVE-2020-28949
Affects drupal7 | Versions <7.44-1ubuntu1~16.04.0+esm2
Has fix
ubuntu:16.04Published 1 Jun 2025
- M
Cross-site Scripting (XSS)CVE-2016-7103
Affects drupal7 | Versions <7.86-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2021-41183
Affects drupal7 | Versions <7.86-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2021-41182
Affects drupal7 | Versions <7.86-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2010-5312
Affects drupal7 | Versions <7.86-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Unrestricted Upload of File with Dangerous TypeCVE-2020-13671
Affects drupal7 | Versions <7.74-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Improper Input ValidationCVE-2022-25271
Affects drupal7 | Versions <7.89-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Improper Certificate ValidationCVE-2022-26493
Affects drupal7 | Versions <7.91-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Open RedirectCVE-2020-13662
Affects drupal7 | Versions <7.70-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2020-11022
Affects drupal7 | Versions <7.70-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Link FollowingCVE-2021-32610
Affects drupal7 | Versions <7.82-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2020-13672
Affects drupal7 | Versions <7.81-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Directory TraversalCVE-2020-36193
Affects drupal7 | Versions <7.78-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Arbitrary Code InjectionCVE-2020-28949
Affects drupal7 | Versions <7.75-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Deserialization of Untrusted DataCVE-2020-28948
Affects drupal7 | Versions <7.75-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Cross-site Request Forgery (CSRF)CVE-2020-13663
Affects drupal7 | Versions <7.72-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2020-11023
Affects drupal7 | Versions <7.70-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2020-13666
Affects drupal7 | Versions <7.73-r0
Has fix
alpine:3.20Published 23 May 2024
- C
Improper Input ValidationCVE-2018-7600
Affects drupal7 | Versions <7.58-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Use After FreeCVE-2018-11358
Affects drupal7 | Versions <7.66-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Deserialization of Untrusted DataCVE-2018-1000888
Affects drupal7 | Versions <7.62-r0
Has fix
alpine:3.20Published 23 May 2024
- M
Cross-site Scripting (XSS)CVE-2019-6341
Affects drupal7 | Versions <7.65-r0
Has fix
alpine:3.20Published 23 May 2024
- C
CVE-2018-7602CVE-2018-7602
Affects drupal7 | Versions <7.59-r0
Has fix
alpine:3.20Published 23 May 2024
- H
Improper Certificate ValidationCVE-2022-26493
Affects drupal7 | Versions <7.91-r0
Has fix
alpine:3.19Published 8 Dec 2023