Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Drupal 7.x, 8.x, 9.x XSS Vulnerability (SA-CORE-2020-007) - Linux

🗓️ 17 Sep 2020 00:00:00Reported by Copyright (C) 2020 Greenbone AGType 
openvas
 openvas🔗 plugins.openvas.org👁 11 Views

Drupal 7.x, 8.x, 9.x XSS Vulnerability (SA-CORE-2020-007) - Linux. Vulnerability in Drupal AJAX API allows cross-site scripting

Show more
Related
Refs
Code
ReporterTitlePublishedViews
Family
Github Security Blog		Drupal Core Cross-site scripting vulnerability
24 May 202217:49
github
UbuntuCve		CVE-2020-13666
5 May 202100:00
ubuntucve
Friends Of PHP		Drupal core - Moderately critical - Cross-site scripting - SA-CORE-2020-007
1 Jan 197000:00
friendsofphp
Friends Of PHP		Drupal core - Moderately critical - Cross-site scripting - SA-CORE-2020-007
1 Jan 197000:00
friendsofphp
OpenVAS		Drupal 7.x, 8.x, 9.x XSS Vulnerability (SA-CORE-2020-007) - Windows
17 Sep 202000:00
openvas
OpenVAS		Debian: Security Advisory (DLA-2458-1)
20 Nov 202000:00
openvas
OpenVAS		Fedora: Security Advisory for drupal7 (FEDORA-2020-7d8f772540)
27 Nov 202000:00
openvas
OpenVAS		Fedora: Security Advisory for drupal7 (FEDORA-2020-088196d926)
27 Nov 202000:00
openvas
OpenVAS		Fedora: Security Advisory for drupal8 (FEDORA-2020-d50d74d6f2)
15 Dec 202000:00
openvas
OpenVAS		Fedora: Security Advisory for drupal8 (FEDORA-2020-6f1079934c)
15 Dec 202000:00
openvas
Rows per page
# SPDX-FileCopyrightText: 2020 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:drupal:drupal";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.144585");
  script_version("2024-02-19T05:05:57+0000");
  script_tag(name:"last_modification", value:"2024-02-19 05:05:57 +0000 (Mon, 19 Feb 2024)");
  script_tag(name:"creation_date", value:"2020-09-17 03:59:36 +0000 (Thu, 17 Sep 2020)");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2021-05-07 18:18:00 +0000 (Fri, 07 May 2021)");

  script_cve_id("CVE-2020-13666");

  script_tag(name:"qod_type", value:"remote_banner_unreliable");

  script_tag(name:"solution_type", value:"VendorFix");

  script_name("Drupal 7.x, 8.x, 9.x XSS Vulnerability (SA-CORE-2020-007) - Linux");

  script_category(ACT_GATHER_INFO);

  script_copyright("Copyright (C) 2020 Greenbone AG");
  script_family("Web application abuses");
  script_dependencies("gb_drupal_http_detect.nasl", "os_detection.nasl");
  script_mandatory_keys("drupal/detected", "Host/runs_unixoide");

  script_tag(name:"summary", value:"Drupal is prone to a cross-site scripting vulnerability.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"The Drupal AJAX API does not disable JSONP by default, which can lead to
  cross-site scripting.");

  script_tag(name:"affected", value:"Drupal 7.x, 8.8.x and prior, 8.9.x and 9.0.x.");

  script_tag(name:"solution", value:"Update to version 7.73, 8.8.10, 8.9.6, 9.0.6 or later.");

  script_xref(name:"URL", value:"https://www.drupal.org/sa-core-2020-007");

  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if (!port = get_app_port(cpe: CPE))
  exit(0);

if (!infos = get_app_version_and_location(cpe: CPE, port: port, exit_no_version: TRUE, version_regex: "^[0-9]\.[0-9]+"))
  exit(0);

version = infos["version"];
location = infos["location"];

if (version_is_less(version: version, test_version: "7.73")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "7.73", install_path: location);
  security_message(port: port, data: report);
  exit(0);
}

if (version_in_range(version: version, test_version: "8.0", test_version2: "8.8.9")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "8.8.10", install_path: location);
  security_message(port: port, data: report);
  exit(0);
}

if (version_in_range(version: version, test_version: "8.9", test_version2: "8.9.5")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "8.9.6", install_path: location);
  security_message(port: port, data: report);
  exit(0);
}

if (version_in_range(version: version, test_version: "9.0", test_version2: "9.0.5")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "9.0.6", install_path: location);
  security_message(port: port, data: report);
  exit(0);
}

exit(99);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
17 Sep 2020 00:00Current
7.1High risk
Vulners AI Score7.1
CVSS24.3
CVSS36.1
EPSS0.001
drupalxssvulnerabilitysa-core-2020-007linuxajax apicross-site scripting
11
.json
Report