Drupal Core Vulnerabilities
Drupal Drupal Core vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Cross-Site Scripting Vulnerability in Drupal Core
CVE-2025-31675DrupalDrupal Core5.4MEDIUMObject Injection Vulnerability in Drupal Core
CVE-2025-31674DrupalDrupal Core7.5HIGHAuthorization Flaw in Drupal Core Affects Multiple Versions
CVE-2025-31673DrupalDrupal Core4.6MEDIUMCross-Site Scripting Vulnerability in Drupal Core by Drupal
CVE-2025-3057DrupalDrupal Core6.1MEDIUMDrupal Core Vulnerability - XSS (Cross-Site Scripting)
CVE-2024-12393DrupalDrupal CoreDrupal Core Vulnerability Allows File Manipulation
CVE-2024-11942DrupalDrupal CoreExcessive Allocation Vulnerability Affects Drupal Core
CVE-2024-11941DrupalDrupal CoreFile Path Disclosure Vulnerability in Drupal 11.x-dev
CVE-2024-45440DrupalDrupal CoreπΎπ‘EPSS 75%5.3MEDIUMCross-Site Scripting Vulnerability in Drupal Core by Drupal
CVE-2020-13688DrupalDrupal Core6.1MEDIUMCross Site Request Forgery in Drupal Core Form API by Drupal
CVE-2020-13663DrupalDrupal Core8.8HIGHAccess Bypass in Drupal Core Workspaces Module by Drupal
CVE-2020-13667DrupalDrupal Core5.3MEDIUMArbitrary PHP Code Execution Vulnerability in Drupal Core by Drupal
CVE-2020-13664DrupalDrupal Core8.8HIGHOpen Redirect Vulnerability in Drupal Core by Drupal
CVE-2020-13662DrupalDrupal Core6.1MEDIUMAccess Bypass Vulnerability in Drupal Core by Drupal
CVE-2020-13665DrupalDrupal Core9.8CRITICALCross-Site Scripting Vulnerability in Drupal Core by Drupal
CVE-2020-13666DrupalDrupal Core6.1MEDIUMFile Upload Vulnerability in Drupal Core Affects Multiple Versions
CVE-2020-13671DrupalDrupal CoreπΎEPSS 16%π¦ 8.8HIGHDrupal core - Critical - Access bypass - SA-CORE-2019-008
CVE-2019-6342DrupalDrupal Core9.8CRITICALAccess Bypass in Drupal 7.x Exposing File Attachments
CVE-2011-2726drupal coredrupal core7.5HIGHDrupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004
CVE-2019-6341DrupalDrupal CoreEPSS 52%5.4MEDIUMDrupal core - Highly critical - Remote Code Execution
CVE-2019-6340DrupalDrupal CoreπΎπ‘EPSS 94%π¦ 8.1HIGHAccess bypass in Drupal 8 views
CVE-2017-6923DrupalDrupal Core6.5MEDIUMFiles uploaded by anonymous users into a private file system can be accessed by other anonymous users
CVE-2017-6922DrupalDrupal Core6.5MEDIUMPHAR stream wrapper Arbitrary PHP code execution
CVE-2019-6339DrupalDrupal CoreπΎπ‘EPSS 74%9.8CRITICALthird-party PEAR Archive_Tar library updates
CVE-2019-6338DrupalDrupal Core8HIGHFile REST resource does not properly validate
CVE-2017-6921DrupalDrupal Core5.9MEDIUM