Lucene search
K

6 matches found

Patchstack
Patchstack
added 2025/11/12 12:0 a.m.3 views

Drupal core 8.0.0-10.4.8,10.5.0-10.5.5,11.0.0-11.1.8,11.2.0-11.2.7 - Unauthenticated Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure vulnerability discovered by Damien McKenna damienmckenna in WordPress Core Drupal versions 8.0.0-10.4.8,10.5.0-10.5.5,11.0.0-11.1.8,11.2.0-11.2.7...

3.7CVSS7AI score0.00249EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/08/27 12:0 a.m.4 views

Drupal Facets module < 2.0.10,3.0.0 - Unauthenticated Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure vulnerability discovered by Damien McKenna damienmckenna in WordPress Module Facets versions 2.0.10,3.0.0...

6.5CVSS7AI score0.00189EPSS
Exploits0References1Affected Software1
Drupal
Drupal
added 2017/01/25 12:0 a.m.18 views

OAuth - Less Critical - Access Bypass - SA-CONTRIB-2017-006

This module enables you to use the OAuth 1.a protocol to authenticate requests. The module does not does not implement the OAuth 1.0a security fix reported at https://oauth.net/advisories/2009-1/. CVE identifiers issued ACVE identifier will be requested, and added upon issuance, in accordance wit...

7.2AI score
Exploits0References15
Drupal
Drupal
added 2016/06/08 12:0 a.m.16 views

Page Manager Search - Moderately Critical - Information disclosure - SA-CONTRIB-2016-032

This module enables you to make Panels pages and other pages managed by CTools' Page Manager submodule indexible and searchable through the standard Search module provided in Drupal core. The module doesn't block access to Page Manager pages which have been disabled. CVE identifiers issued ACVE...

7.2AI score
Exploits0References12
Drupal
Drupal
added 2014/05/14 12:0 a.m.13 views

SA-CONTRIB-2014-053 - Field API Tab Editor (FATE) - Access bypass

This module allows each entity field to be individually edited via its own custom page, accessible via a tab on the entity's page. The module returns an incorrect value to hookmenu if the current user does not have access to edit the entity. This allows users who would not normally have access to...

6.8AI score
Exploits0References11
Drupal
Drupal
added 2014/04/30 12:0 a.m.11 views

SA-CONTRIB-2014-048 - Field API Pane Editor (FAPE) - Access bypass

This module adds a contextual menu to fields which are added to an entity display in Panels, allowing individual fields to be directly edited via a separate page or, if it is enabled, the Overlay module. The module doesn't sufficiently verify the user has access to modify the entity the field is...

6.1AI score
Exploits0References13
Rows per page
Query Builder