Drupal Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by drupal
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Incorrect Authorization Vulnerability in Drupal Two-Factor Authentication
CVE-2025-31694DrupalTwo-factor Authenticat...8.1HIGHOS Command Injection Vulnerability in Drupal AI Software
CVE-2025-31692DrupalAi (artificial Intelli...7.5HIGHAuthorization Bypass in Drupal OAuth2 Server
CVE-2025-31691DrupalOauth2 Server9.8CRITICALCross-Site Request Forgery Vulnerability in Drupal Cache Utility
CVE-2025-31690DrupalCache Utility8.8HIGHCross-Site Request Forgery Vulnerability in Drupal's General Data Protection Regulation Plugin
CVE-2025-31689DrupalGeneral Data Protectio...8.1HIGHMissing Authorization Flaw in Drupal Open Social Affects Multiple Versions
CVE-2025-31686DrupalOpen Social8.1HIGHAuthorization Bypass in Drupal Open Social Affects Vulnerable Versions
CVE-2025-31685DrupalOpen Social9.1CRITICALMissing Authorization in Drupal Authenticator Login Affects Forceful Browsing
CVE-2025-31681DrupalAuthenticator Login9.8CRITICALMissing Authorization Vulnerability in Drupal AI by Acquia
CVE-2025-31678DrupalAi (artificial Intelli...8.2HIGHCSRF Vulnerability in Drupal AI Affects Security of User Data
CVE-2025-31677DrupalAi (artificial Intelli...8.8HIGHBrute Force Vulnerability in Email TFA Affects Drupal Product by Drupal
CVE-2025-31676DrupalEmail Tfa8.8HIGHObject Injection Vulnerability in Drupal Core
CVE-2025-31674DrupalDrupal Core7.5HIGHFile Extension Bypass Vulnerability in Drupal by Acquia
CVE-2024-13311DrupalAllow All File Extensi...7.3HIGHDrupal core - Critical - Cache poisoning - SA-CORE-2023-006
CVE-2023-5256DrupalCore7.5HIGHImproper Input Validation in Drupal Core Forms Affecting Custom Modules
CVE-2022-25273DrupalCore7.5HIGHFile Upload Vulnerability in Drupal Core by Acquia
CVE-2022-25277DrupalCore7.2HIGHAccess Control Flaw in Drupal Image Module
CVE-2022-25275DrupalCore7.5HIGHImproper Input Validation in Drupal Core's Form API Affecting User Data Security
CVE-2022-25271DrupalCore7.5HIGHAccess Control Vulnerability in Drupal Core JSON:API by Drupal
CVE-2020-13677DrupalCore7.5HIGHInformation Disclosure Vulnerability in Drupal Core File Module
CVE-2020-13670DrupalCore7.5HIGHAccess Bypass Vulnerability in Drupal's JSON:API and REST/File Modules
CVE-2020-13675DrupalCore9.8CRITICALCross Site Request Forgery in Drupal Core Form API by Drupal
CVE-2020-13663DrupalDrupal Core8.8HIGHArbitrary PHP Code Execution Vulnerability in Drupal Core by Drupal
CVE-2020-13664DrupalDrupal Core8.8HIGHAccess Bypass Vulnerability in Drupal Core by Drupal
CVE-2020-13665DrupalDrupal Core9.8CRITICALDocker Images with Default Root Password in Drupal by Drupal
CVE-2020-35191DrupalDrupal Docker ImagesπΎπ‘EPSS 20%9.8CRITICAL