Lucene search
K

66 matches found

EUVD
EUVD
added 3 days ago5 views

EUVD-2026-43060

Missing Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

6.1AI score0.00142EPSS
Exploits0References2
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-43059

Missing Authorization vulnerability in Drupal AI Artificial Intelligence allows Forceful Browsing. This issue affects AI Artificial Intelligence versions: from 0.0.0 to 1.2.17, from 1.3.0 to 1.3.8, from 1.4.0 to 1.4.3...

6.1AI score0.00142EPSS
Exploits0References2
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-43058

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal AI Artificial Intelligence allows Cross-Site Scripting XSS. This issue affects AI Artificial Intelligence versions: from 0.0.0 to 1.2.17, from 1.3.0 to 1.3.8, from 1.4.0 to 1.4.3...

6.1AI score0.00161EPSS
Exploits0References2
NVD
NVD
added 4 days ago3 views

CVE-2026-13234

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal AI Artificial Intelligence allows Cross-Site Scripting XSS. This issue affects AI Artificial Intelligence versions: from 0.0.0 to 1.2.17, from 1.3.0 to 1.3.8, from 1.4.0 to 1.4.3...

6.1CVSS0.00161EPSS
Exploits0References1
NVD
NVD
added 4 days ago4 views

CVE-2026-13236

Missing Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

4.2CVSS0.00142EPSS
Exploits0References1
NVD
NVD
added 4 days ago4 views

CVE-2026-13237

Incorrect Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

4.8CVSS0.00142EPSS
Exploits0References1
CVE
CVE
added 4 days ago10 views

CVE-2026-15085

The affected software is the Drupal AI SEO/GEO Analyzer module. It is vulnerable to Stored Cross‑site Scripting (XSS) in versions 0.0.0 through 1.1.3. The root cause, as described in the connected DRUPAL-SA-CONTRIB-2026-076 entry and PT-2026-56665, is that the module sends entity content (includi...

5.4CVSS6.1AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 4 days ago12 views

CVE-2026-13237

CVE-2026-13237 affects Drupal AI Agents (versions 0.0.0–1.1.4, 1.2.0–1.2.5, 1.3.0–1.3.1). Root cause: Incorrect Authorization allowing Forceful Browsing, potentially enabling information disclosure and minor integrity concerns. The issue is documented across multiple sources (Drual SA-CONTRIB-202...

4.8CVSS6.1AI score0.00142EPSS
Exploits0References1
OSV
OSV
added 4 days ago2 views

CVE-2026-13237 AI Agents - Moderately critical - Information disclosure, Access bypass - SA-CONTRIB-2026-057

Incorrect Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

4.8CVSS6.1AI score0.00142EPSS
Exploits0References5
CVE
CVE
added 4 days ago13 views

CVE-2026-13236

The CVE CVE-2026-13236 concerns a Missing Authorization issue in Drupal AI Agents that enables forceful browsing. Technical details across connected sources show that the vulnerability resides in the Drupal AI Agents module, where the tool-loading path does not sufficiently verify permissions on ...

4.2CVSS6.1AI score0.00142EPSS
Exploits0References1
OSV
OSV
added 4 days ago3 views

CVE-2026-13236 AI Agents - Less critical - Access bypass - SA-CONTRIB-2026-056

Missing Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

4.2CVSS6.1AI score0.00142EPSS
Exploits0References5
Cvelist
Cvelist
added 4 days ago33 views

CVE-2026-13236 AI Agents - Less critical - Access bypass - SA-CONTRIB-2026-056

Missing Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

0.00142EPSS
Exploits0References1
OSV
OSV
added 4 days ago5 views

CVE-2026-13235 AI (Artificial Intelligence) - Moderately critical - Access bypass - SA-CONTRIB-2026-055

Missing Authorization vulnerability in Drupal AI Artificial Intelligence allows Forceful Browsing. This issue affects AI Artificial Intelligence versions: from 0.0.0 to 1.2.17, from 1.3.0 to 1.3.8, from 1.4.0 to 1.4.3...

3.3CVSS6.1AI score0.00142EPSS
Exploits0References5
Cvelist
Cvelist
added 4 days ago31 views

CVE-2026-13234 AI (Artificial Intelligence) - Moderately critical - Information Disclosure / Cross-site Scripting - SA-CONTRIB-2026-054

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal AI Artificial Intelligence allows Cross-Site Scripting XSS. This issue affects AI Artificial Intelligence versions: from 0.0.0 to 1.2.17, from 1.3.0 to 1.3.8, from 1.4.0 to 1.4.3...

0.00161EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-52170

Name of the Vulnerable Software and Affected Versions Drupal AI Agents versions 0.0.0 through 1.1.4 Drupal AI Agents versions 1.2.0 through 1.2.5 Drupal AI Agents versions 1.3.0 through 1.3.1 Description An incorrect authorization issue allows forceful browsing. Under certain conditions, the agen...

6.1AI score0.00142EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/26 9:42 p.m.4 views

CVE-2026-3573

A flaw was found in Drupal AI Artificial Intelligence. An incorrect authorization vulnerability allows for resource injection. This issue enables an attacker to inject unauthorized resources, potentially leading to unintended system behavior or compromise...

5.8AI score0.00232EPSS
Exploits0References2
NVD
NVD
added 2026/03/26 9:17 p.m.4 views

CVE-2026-3573

Incorrect Authorization vulnerability in Drupal AI Artificial Intelligence allows Resource Injection.This issue affects AI Artificial Intelligence: from 0.0.0 before 1.1.11, from 1.2.0 before 1.2.12...

7.5CVSS0.00232EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/26 8:10 p.m.3 views

CVE-2026-3573

Incorrect Authorization vulnerability in Drupal AI Artificial Intelligence allows Resource Injection.This issue affects AI Artificial Intelligence: from 0.0.0 before 1.1.11, from 1.2.0 before 1.2.12...

5.8AI score0.00232EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/26 8:10 p.m.21 views

CVE-2026-3573 AI (Artificial Intelligence) - Moderately critical - Information Disclosure - SA-CONTRIB-2026-028

Incorrect Authorization vulnerability in Drupal AI Artificial Intelligence allows Resource Injection.This issue affects AI Artificial Intelligence: from 0.0.0 before 1.1.11, from 1.2.0 before 1.2.12...

0.00232EPSS
Exploits0References1
CVE
CVE
added 2026/03/26 8:10 p.m.10 views

CVE-2026-3573

CVE-2026-3573 affects Drupal AI (Artificial Intelligence). Multiple sources confirm an incorrect authorization vulnerability that allows resource injection. Affected versions: Drupal AI 0.0.0 through 1.1.10 and 1.2.0 through 1.2.11. Under certain conditions, rendering HTML/Markdown via the module...

7.5CVSS5.8AI score0.00232EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder