Drupal 8.3.x < 8.3.9 Remote Code Execution Vulnerability

According to its self-reported version number, the detected Drupal application is affected by a remote code execution vulnerability. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...

Drupal 8.3.x < 8.3.1 Access Bypass Vulnerability

According to its self-reported version number, the detected Drupal application is affected by an access bypass vulnerability due to an unspecified flaw when the RESTful Web Services rest module is enabled and the site allows PATCH requests. An authenticated, remote attacker can exploit this to...