2 matches found
VulnCheck KEV: CVE-2019-6340
In Drupal Core, some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases...
Remote Code Execution (RCE)
drupal is vulnerable to remote code execution RCE attacks. The vulnerability exists through certain field types that do not sanitize data from non-form sources, allowing remote code execution RCE attacks...