Lucene search
K

16 matches found

EUVD
EUVD
added 3 days ago6 views

EUVD-2026-43061

Incorrect Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1...

6.1AI score0.00142EPSS
Exploits0References2
OSV
OSV
added 4 days ago2 views

CVE-2026-15082 Siteimprove Analytics - Moderately critical - Cross-site Scripting - SA-CONTRIB-2026-073

Improper Neutralization of Input During Web Page Generation "Cross-site Scripting" vulnerability in Drupal Siteimprove Analytics allows Cross-Site Scripting XSS. This issue affects Siteimprove Analytics versions: from 0.0.0 to 2.0.1...

5.4CVSS6.1AI score0.00186EPSS
Exploits0References5
Cvelist
Cvelist
added 4 days ago32 views

CVE-2026-15081 Location Selector - Critical - SQL Injection - SA-CONTRIB-2026-072

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Drupal Location Selector allows SQL Injection. This issue affects Location Selector versions: from 0.0.0 to 1.3.0...

0.00194EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/28 8:3 p.m.6 views

CVE-2025-14472

Cross-Site Request Forgery CSRF vulnerability in Drupal Acquia Content Hub allows Cross Site Request Forgery.This issue affects Acquia Content Hub: from 0.0.0 before 3.6.4, from 3.7.0 before 3.7.3...

5.9AI score0.0013EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/28 8:1 p.m.2 views

CVE-2025-13982 Login Time Restriction - Moderately critical - Cross-Site Request Forgery - SA-CONTRIB-2025-120

Cross-Site Request Forgery CSRF vulnerability in Drupal Login Time Restriction allows Cross Site Request Forgery.This issue affects Login Time Restriction: from 0.0.0 before 1.0.3...

5.9AI score0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/28 12:0 a.m.27 views

PT-2026-5206

Name of the Vulnerable Software and Affected Versions Acquia Content Hub versions 0.0.0 through 3.6.3 Acquia Content Hub versions 3.7.0 through 3.7.2 Description A Cross-Site Request Forgery CSRF issue exists in Acquia Content Hub. This allows attackers to perform actions on behalf of authenticat...

8.1CVSS5.9AI score0.0013EPSS
Exploits0References7
NVD
NVD
added 2025/10/30 12:15 a.m.6 views

CVE-2025-10929

Improper Validation of Consistency within Input vulnerability in Drupal Reverse Proxy Header allows Manipulating User-Controlled Variables.This issue affects Reverse Proxy Header: from 0.0.0 before 1.1.2...

5.3CVSS0.00276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/17 5:25 p.m.12 views

CVE-2025-8675

Server-Side Request Forgery SSRF vulnerability in Drupal AI SEO Link Advisor allows Server Side Request Forgery.This issue affects AI SEO Link Advisor: from 0.0.0 before 1.0.6...

8.8CVSS7.3AI score0.00235EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/15 4:27 p.m.12 views

CVE-2025-8675 AI SEO Link Advisor - Less critical - Server-side Request Forgery - SA-CONTRIB-2025-095

Server-Side Request Forgery SSRF vulnerability in Drupal AI SEO Link Advisor allows Server Side Request Forgery.This issue affects AI SEO Link Advisor: from 0.0.0 before 1.0.6...

0.00235EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/31 12:0 a.m.5 views

Drupal Open Social 安全漏洞

Drupal Open Social is a Drupal-based social networking platform solution from the Drupal community designed to provide a complete social networking capability for businesses, organizations or communities. A security vulnerability exists in Drupal Open Social versions prior to 12.3.11 and 12.4.0...

9.1CVSS6.3AI score0.00363EPSS
Exploits0References2
OSV
OSV
added 2025/01/09 7:15 p.m.4 views

CVE-2024-13264 Opigno module - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-028

Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability in Drupal Opigno module allows PHP Local File Inclusion.This issue affects Opigno module: from 0.0.0 before 3.1.2...

9.8CVSS7.2AI score0.00452EPSS
Exploits0References5
VulnCheck KEV
VulnCheck KEV
added 2022/01/26 12:0 a.m.3 views

VulnCheck KEV: CVE-2013-0322

Cross-site scripting XSS vulnerability in Views in the Ubercart module 7.x-3.x before 7.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full name field...

4.3CVSS6AI score0.01161EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/28 12:0 a.m.7 views

elFinder 路径遍历漏洞

elFinder is a set of Drupal-based platform , open source AJAX file manager . The product provides multiple file uploads, image scaling, and other features. A path traversal vulnerability exists in elFinder AspNet that does not properly eliminate a file system path before creating it using a...

7.5CVSS7.3AI score0.01732EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/07/02 12:0 a.m.3 views

elFinder 安全漏洞

elFinder is a set of Drupal-based platform , open source AJAX file manager . The product provides multiple file uploads, image scaling and other features. A security vulnerability exists in ElFinder 2.1.47 and earlier versions, which stems from a command injection vulnerability in the program's P...

5.4AI score
Exploits0References1
CNNVD
CNNVD
added 2021/06/14 12:0 a.m.62 views

elFinder 代码问题漏洞

elFinder is a set of open source AJAX file managers based on the Drupal platform. The product provides multiple file uploads, image scaling, and other features. elFinder has a security vulnerability that could be exploited by attackers to execute arbitrary code and commands on the server hosting...

9.8CVSS6.3AI score0.69934EPSS
Exploits5References5
CNVD
CNVD
added 2017/02/06 12:0 a.m.5 views

Drupal OpenLucius module cross-site request forgery vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.OpenLucius is one of the work management platforms for social communication, documentation and projects. A cross-site request forgery vulnerability exists in the Drupal OpenLucius modul...

7.1AI score
Exploits0References1
Rows per page
Query Builder