Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2020-5903

Malware in sbrugna...

6.1CVSS6.1AI score0.00255EPSS
Exploits0References3
OSV
OSVadded 2022/02/11 4:15 p.m.2 views

CVE-2020-13673

The Entity Embed module provides a filter to allow embedding entities in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HTML into a page when it is accessed by a trusted user with permission to embed entities. In some cases, this could lead to...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2022/02/11 4:15 p.m.11 views

CVE-2020-13673

The Entity Embed module provides a filter to allow embedding entities in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HTML into a page when it is accessed by a trusted user with permission to embed entities. In some cases, this could lead to...

6.1CVSS0.00255EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/02/11 3:35 p.m.15 views

CVE-2020-13673

The Entity Embed module provides a filter to allow embedding entities in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HTML into a page when it is accessed by a trusted user with permission to embed entities. In some cases, this could lead to...

7.2AI score0.00255EPSS
Exploits0References1
CVE
CVEadded 2022/02/11 3:35 p.m.53 views

CVE-2020-13673

CVE-2020-13673 affects the Drupal core Media module, where a filter for embedding media in content fields can let an unprivileged user inject HTML when viewed by a privileged user, enabling cross-site scripting. The issue is documented by NVD as a XSS risk via the media embedding filter. Remediat...

6.1CVSS5.7AI score0.00255EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2021/09/15 3:28 p.m.4 views

DRUPAL-CONTRIB-2021-028

This advisory addresses a similar issue to Drupal core - Moderately critical - Cross Site Request Forgery - SA-CORE-2021-006. The Entity Embed module provides a filter to allow embedding entities in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HT...

6.1CVSS6.1AI score0.00255EPSS
Exploits0References1
Drupal
Drupaladded 2021/09/15 12:0 a.m.30 views

Drupal core - Moderately critical - Cross Site Request Forgery - SA-CORE-2021-006

The Drupal core Media module allows embedding internal and external media in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HTML into a page when it is accessed by a trusted user with permission to embed media. In some cases, this could lead to...

6.1CVSS0.8AI score0.00255EPSS
Exploits0References15
Drupal
Drupaladded 2021/09/15 12:0 a.m.19 views

Entity Embed - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2021-028

This advisory addresses a similar issue to Drupal core - Moderately critical - Cross Site Request Forgery - SA-CORE-2021-006. The Entity Embed module provides a filter to allow embedding entities in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HT...

6.1CVSS7.5AI score0.00255EPSS
Exploits0References9
CNNVD
CNNVDadded 2021/09/15 12:0 a.m.8 views

Drupal 跨站脚本漏洞

Drupal is an open source content management system developed in PHP by the Drupal community. A cross-site scripting vulnerability exists in the Drupal Entity Embed module, which originates from a WEB application that does not adequately validate that a request is coming from a trusted user. An...

6.1CVSS6AI score0.00255EPSS
Exploits0References6
Rows per page
Query Builder