Drupal Core Vulnerabilities
Drupal Core vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Cross-Site Scripting Vulnerability in Drupal Core
CVE-2025-31675DrupalDrupal Core5.4MEDIUMObject Injection Vulnerability in Drupal Core
CVE-2025-31674DrupalDrupal Core7.5HIGHAuthorization Flaw in Drupal Core Affects Multiple Versions
CVE-2025-31673DrupalDrupal Core4.6MEDIUMCross-Site Scripting Vulnerability in Drupal Core by Drupal
CVE-2025-3057DrupalDrupal Core6.1MEDIUMDrupal Core Vulnerability - XSS (Cross-Site Scripting)
CVE-2024-12393DrupalDrupal CoreDrupal Core Vulnerability Allows File Manipulation
CVE-2024-11942DrupalDrupal CoreExcessive Allocation Vulnerability Affects Drupal Core
CVE-2024-11941DrupalDrupal CoreFile Path Disclosure Vulnerability in Drupal 11.x-dev
CVE-2024-45440DrupalDrupal CoreπΎπ‘EPSS 75%5.3MEDIUMDrupal core - Critical - Cache poisoning - SA-CORE-2023-006
CVE-2023-5256DrupalCore7.5HIGHAccess Bypass in Drupal's Revision System for Node and Media Content
CVE-2022-25274DrupalCore5.4MEDIUMFile Path Exposure Vulnerability in Drupal by Drupal
CVE-2023-31250DrupalCore6.5MEDIUMFile Upload Vulnerability in Drupal Core by Acquia
CVE-2022-25277DrupalCore7.2HIGHCross-Site Scripting Vulnerability in Drupal's Media oEmbed Component
CVE-2022-25276DrupalCore6.1MEDIUMAccess Control Flaw in Drupal Image Module
CVE-2022-25275DrupalCore7.5HIGHAccess Control Vulnerability in Drupal Core by Drupal
CVE-2022-25278DrupalCore6.5MEDIUMImproper Input Validation in Drupal Core Forms Affecting Custom Modules
CVE-2022-25273DrupalCore7.5HIGHAccess Control Flaw in Quick Edit Module for Drupal by Drupal
CVE-2022-25270DrupalCore6.5MEDIUMImproper Input Validation in Drupal Core's Form API Affecting User Data Security
CVE-2022-25271DrupalCore7.5HIGHAccess Control Vulnerability in Drupal Core JSON:API by Drupal
CVE-2020-13677DrupalCore7.5HIGHAccess Control Issue in Drupal's QuickEdit Module
CVE-2020-13676DrupalCore6.5MEDIUMInformation Disclosure Vulnerability in Drupal Core File Module
CVE-2020-13670DrupalCore7.5HIGHAccess Validation Bypass in QuickEdit Module for Drupal
CVE-2020-13674DrupalCore6.5MEDIUMAccess Bypass Vulnerability in Drupal's JSON:API and REST/File Modules
CVE-2020-13675DrupalCore9.8CRITICALCross-Site Scripting Vulnerability in Drupal Core by Drupal
CVE-2020-13672DrupalCore6.1MEDIUMCross-Site Scripting Vulnerability in Drupal Core by Drupal
CVE-2020-13669DrupalCore6.1MEDIUM