[SECURITY] Fedora 41 Update: drupal7-7.103-1.fc41

Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure...

PT-2025-21192 · Unknown +1 · Klaro Cookie & Consent Management +1

Name of the Vulnerable Software and Affected Versions: Klaro Cookie & Consent Management versions 0.0.0 through 3.0.4 Description: The issue affects Drupal Klaro Cookie & Consent Management, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation...

Registration role - Critical - Access bypass - SA-CONTRIB-2024-015

The Registration role module lets an administrator select a role or multiple roles to automatically assign to new users. The selected role or roles will be assigned to new registrants. The module has a logic error when handling sites that upgraded code and did not run the Drupal update process e....

UBUNTU-CVE-2023-31250

The file download facility doesn't sufficiently sanitize file paths in certain situations. This may result in users gaining access to private files that they should not have access to. Some sites may require configuration changes following this security release. Review the release notes for your...

TB Nucleus - Critical - Unsupported - SA-CONTRIB-2018-031

Update - 2018-09-26 This maintainer has fixed this security issue. Please install https://www.drupal.org/project/nucleus/releases/7.x-1.6 to fix the security issue The security team is marking this theme unsupported. There is a known security issue with the theme that has not been fixed by the...

[SECURITY] Fedora 23 Update: drupal7-panels-3.7-1.fc23

The Panels module allows a site administrator to create customized layouts for multiple uses. At its core it is a drag and drop content manager that lets you visually design a layout and place content within that layout. Integration with other systems allows you to create nodes that use this,...

Drupal Detected via Update Traffic

Binary data 9208.prm...

Fedora 8 : drupal-5.11-1.fc8 (2008-8905)

Update to 5.11, security fixes: SA-2008-047 http://drupal.org/node/318706 - File upload access bypass file disclosure - Access rules bypass - BlogAPI access bypass - Node validation bypass Remember to log in to your site as the admin user before upgrading this package. After upgrading the package...

Debian Security Advisory DSA 958-1 (drupal)

The remote host is missing an update to drupal announced via advisory DSA 958-1. Several security related problems have been discovered in drupal, a fully-featured content management/discussion engine. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities:...

Easylinks multiple vulnerabilities

Unescaped input is used directly in queries, allowing malicious users to execute SQL injection attacks. This may result in administrator privileges. It is also possible for a malicious user to insert and execute XSS Cross Site Scripting, due to lack of validation on output. This may lead to...

Critical - Third Party Libraries

More info at https://www.drupal.org/sa-core-2019-001...