Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-6381

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A 3rd party development library including with Drupal 8 development dependencies is vulnerable to remote code execution. This is mitigated by the default...

8.1CVSS7.9AI score0.03901EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.29 views

Drupal 8.x < 8.2.7 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - A security bypass vulnerability exists in the editor module due to a failure to properly check access restrictions when adding private files with a configured text editor e.g...

8.1CVSS8.5AI score0.03901EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2017/03/17 12:0 a.m.27 views

Drupal Multiple Vulnerabilities (SA-2017-001) - Windows

Drupal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; ifdescription...

8.1CVSS7.7AI score0.03901EPSS
Exploits0References2
CVE
CVE
added 2017/03/16 2:0 p.m.78 views

CVE-2017-6381

CVE-2017-6381 corresponds to a Drupal RCE via the PHPUnit component bundled with Drupal 8 development dependencies. Affected if running Drupal versions before 8.2.2; mitigation in the public description notes that .htaccess generally blocks PHP execution and that Composer development dependencies...

8.1CVSS8.2AI score0.03901EPSS
Exploits0References3Affected Software1
FreeBSD
FreeBSD
added 2017/03/15 12:0 a.m.21 views

drupal8 -- multiple vulnerabilities

Drupal Security Team reports: CVE-2017-6377: Editor module incorrectly checks access to inline private files CVE-2017-6379: Some admin paths were not protected with a CSRF token CVE-2017-6381: Remote code execution...

8.1CVSS8AI score0.03901EPSS
Exploits0References1
Rows per page
Query Builder