CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read: https://www.drupal.org/node/251466s-becoming-owner-maintainer-or-co-mai...

5.3CVSS6.6AI score0.0004EPSS

Exploits0References1

OSV•added 2025/08/27 5:20 p.m.•2 views

DRUPAL-CONTRIB-2025-103

5.3CVSS6.6AI score0.0004EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:1 a.m.•2 views

CVE-2016-20003

The REST/JSON project 7.x-1.x for Drupal allows user enumeration, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy...

7.5CVSS7.1AI score0.00316EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 1:11 a.m.•5 views

CVE-2016-20005

The REST/JSON project 7.x-1.x for Drupal allows user registration bypass, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy...

9.8CVSS7.1AI score0.00363EPSS

Exploits0References1

OSV•added 2025/04/23 4:59 p.m.•3 views

DRUPAL-CONTRIB-2025-045

7.3CVSS6.6AI score0.00148EPSS

Exploits0References1

OSV•added 2025/04/16 4:25 p.m.•2 views

DRUPAL-CONTRIB-2025-039

5.9CVSS6.6AI score0.00152EPSS

Exploits0References1

Drupal•added 2025/04/16 12:0 a.m.•17 views

Google Optimize - Critical - Unsupported - SA-CONTRIB-2025-039

5.9CVSS6.9AI score0.00152EPSS

Exploits0References2

OSV•added 2025/01/08 5:54 p.m.•2 views

DRUPAL-CONTRIB-2025-002

5.3CVSS6.6AI score0.00626EPSS

Exploits0References1

OSV•added 2022/01/25 6:41 p.m.•1 views

DRUPAL-CONTRIB-2022-021

6.6AI score

Exploits0References1

OSV•added 2022/01/25 6:36 p.m.•1 views

DRUPAL-CONTRIB-2022-008

6.6AI score

Exploits0References1

Drupal•added 2022/01/25 12:0 a.m.•14 views

Admin Toolbar Search - Critical - Unsupported - SA-CONTRIB-2022-008

6.6AI score

Exploits0References2

OSV•added 2021/07/28 4:39 p.m.•1 views

DRUPAL-CONTRIB-2021-024

This project enables administrators to restrict access from anonymous and regular users to pre-defined pages. The administration routes used by the project lacked proper permissions, allowing untrusted users to access, create and modify the module's settings...

6.7AI score

Exploits0References1

OSV•added 2019/11/13 6:4 p.m.•2 views

DRUPAL-CONTRIB-2019-081

6.6AI score

Exploits0References1

Tenable Nessus•added 2019/03/06 12:0 a.m.•9 views

Fedora 29 : drupal7-link (2019-55788aeb71)

https://www.drupal.org/project/link/releases/7.x-1.6 - https://www.drupal.org/sa-contrib-2019-020 - https://www.drupal.org/sa-core-2019-003 - https://www.drupal.org/project/link/releases/7.x-1.5 - https://www.drupal.org/project/link/releases/7.x-1.5-beta3 Note that Tenable Network Security has...

5.5AI score

Exploits0References2

OSV•added 2018/06/06 12:58 p.m.•2 views

DRUPAL-CONTRIB-2018-038

The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read: . The security team marks all unsupported projects critical by default...

6.7AI score

Exploits0References1

Drupal•added 2014/08/06 12:0 a.m.•646 views

SA-CORE-2014-004 - Drupal core - Denial of service

Drupal 6 and Drupal 7 include an XML-RPC endpoint which is publicly available xmlrpc.php. The PHP XML parser used by this XML-RPC endpoint is vulnerable to an XML entity expansion attack and other related XML payload attacks which can cause CPU and memory exhaustion and the site's database to rea...

6.8CVSS6.5AI score0.07017EPSS

Exploits0References21

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by