Lucene search
K
DrupalRecent

1940 matches found

Drupal
Drupal
•added 2021/10/13 12:0 a.m.•45 views

Loft Data Grids - Moderately critical - XML External Entity (XXE) Processing - SA-CONTRIB-2021-043

This module enables aklump/loftdatagrids to be used as a Drupal module. Excel support was provided by https://packagist.org/packages/phpoffice/phpexcel, which is abandoned and there are known security vulnerabilities: CVE-2018-19277: PHPOffice/PhpSpreadsheet771. Excel support has since been...

8.8CVSS6.7AI score0.07791EPSS
Exploits4References9
Drupal
Drupal
•added 2021/09/29 12:0 a.m.•14 views

Linkit - Moderately critical - Cross Site Scripting - SA-CONTRIB-2021-042

Linkit provides an easy interface for internal and external linking with WYSIWYG editors by using an autocomplete field. It does not sufficiently sanitize user input. This vulnerability is mitigated by the fact that an attacker must have a role with the permission to create or edit an entity bund...

6.5AI score
Exploits0References7
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•5 views

Taxonomy Manager - Moderately critical - Access bypass - SA-CONTRIB-2021-035

This module provides a powerful interface for managing a taxonomy vocabulary. A vocabulary gets displayed in a dynamic tree view, where parent terms can be expanded to list their nested child terms or can be collapsed. The module does not take the correct user permissions into account, allowing a...

5.6AI score
Exploits0References7
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•8 views

SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider - Moderately critical - Multiple vulnerabilities - SA-CONTRIB-2021-036

This module provides a solution to authenticate visitors using existing SAML providers. Certain non-default configurations allow a malicious user to login as any chosen user. The vulnerability is mitigated by the module's default settings which require the options "Either sign SAML assertions" an...

5.5AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•13 views

Domain Group - Critical - Access bypass - SA-CONTRIB-2021-037

This module enables sites to define a domain from Domain Access that points directly to a group page. The module doesn't sufficiently manage the access to content administrative paths allowing an attacker to see and take actions on content nodes they should be allowed to...

6.6AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•6 views

Client-side Hierarchical Select - Moderately critical - Cross-site scripting - SA-CONTRIB-2021-031

The module provides a field widget for selecting taxonomy terms in a hierarchical fashion. The module doesn't sanitize user input in certain cases, leading to a possible Cross-Site-Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role with...

5.6AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•17 views

The Better Mega Menu - Moderately critical - Cross Site Scripting - SA-CONTRIB-2021-039

This module provides an admin interface for creating drop down menus that combine Drupal menu items with rich media content. It does not sufficiently sanitize user input such that an admin with permissions to edit a menu may be able to exploit one or more Cross-Site-Scripting XSS vulnerabilities...

6.2AI score
Exploits0References9
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•12 views

The Better Mega Menu - Critical - Cross Site Request Forgery - SA-CONTRIB-2021-040

This module provides an admin interface for creating drop down menus that combine Drupal menu items with rich media content. The module does not use CSRF tokens to protect routes for saving menu configurations. This vulnerability can be exploited by an anonymous user...

6.7AI score
Exploits0References5
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•5 views

File Extractor - Critical - Arbitrary PHP code execution - SA-CONTRIB-2021-033

This module enables you to extract the textual content of files for use on a website, e.g. to display it or use it in search indexes. The module doesn't sufficiently protect the administrator-defined commands that are executed on the server, which leads to post-authentication remote code executio...

6.6AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•27 views

Search API attachments - Critical - Arbitrary PHP code execution - SA-CONTRIB-2021-034

This module enables you to extract the textual content of files for use on a website, e.g. to display it or use it in search indexes. The module doesn't sufficiently protect the administrator-defined commands that are executed on the server, which leads to post-authentication remote code executio...

7.6AI score
Exploits0References7
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•17 views

User hash - Moderately critical - Cache poisoning - SA-CONTRIB-2021-030

This module enables you to create an individual hash for each user. These hashes can be used for authentication instead of the user's password, e.g. for views exporters. The module doesn't sufficiently invalidate page output when the pagecache module is used. This vulnerability is mitigated by th...

6.7AI score
Exploits0References5
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•17 views

The Better Mega Menu - Moderately critical - Access bypass - SA-CONTRIB-2021-041

This module provides an admin interface for creating drop down menus that combine Drupal menu items with rich media content. This module has a vulnerability whereby users can select blocks as a menu item they don't have permission to view. The vulnerability is mitigated by the fact that it can on...

6.5AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•15 views

Commerce Core - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2021-032

This module provides a system for building an ecommerce solution in their Drupal site. The module doesn't sufficiently verify access to profile data in certain circumstances. This vulnerability is mitigated by the fact that an attacker must have permission to perform the checkout operation...

6.4AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/22 12:0 a.m.•16 views

The Better Mega Menu - Moderately critical - Cross Site Scripting, Information Disclosure, Multiple vulnerabilities - SA-CONTRIB-2021-038

This module provides an admin interface for creating drop down menus that combine Drupal menu items with rich media content. The module does not sanitize values for CSS properties that are added by admins and rendered on the front-end, allowing attackers to inject malicious code into the front-en...

6.8AI score
Exploits0References6
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•20 views

Entity Embed - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2021-028

This advisory addresses a similar issue to Drupal core - Moderately critical - Cross Site Request Forgery - SA-CORE-2021-006. The Entity Embed module provides a filter to allow embedding entities in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HT...

6.1CVSS7.5AI score0.00259EPSS
Exploits0References9
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•38 views

Drupal core - Moderately critical - Cross Site Request Forgery - SA-CORE-2021-007

The QuickEdit module does not properly validate access to routes, which could allow cross-site request forgery under some circumstances and lead to possible data integrity issues. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed. Removing the...

6.5CVSS3AI score0.00456EPSS
Exploits0References16
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•46 views

GraphQL - Moderately critical - Access bypass - SA-CONTRIB-2021-029

This advisory addresses a similar issue to Drupal core - Moderately critical - Access bypass - SA-CORE-2021-008. The GraphQL module allows file uploads through its HTTP API. The module does not correctly run all file validation, which causes an access bypass vulnerability. An attacker might be ab...

9.8CVSS9.2AI score0.01236EPSS
Exploits0References13
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•46 views

Drupal core - Moderately critical - Access bypass - SA-CORE-2021-009

The QuickEdit module does not properly check access to fields in some circumstances, which can lead to unintended disclosure of field data. Sites are only affected if the QuickEdit module which comes with the Standard profile is installed. This advisory is not covered by Drupal Steward...

6.5CVSS2.7AI score0.00805EPSS
Exploits0References14
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•32 views

Drupal core - Moderately critical - Cross Site Request Forgery - SA-CORE-2021-006

The Drupal core Media module allows embedding internal and external media in content fields. In certain circumstances, the filter could allow an unprivileged user to inject HTML into a page when it is accessed by a trusted user with permission to embed media. In some cases, this could lead to...

6.1CVSS0.8AI score0.00259EPSS
Exploits0References15
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•52 views

Drupal core - Moderately critical - Access bypass - SA-CORE-2021-008

Drupal's JSON:API and REST/File modules allow file uploads through their HTTP APIs. The modules do not correctly run all file validation, which causes an access bypass vulnerability. An attacker might be able to upload files that bypass the file validation process implemented by modules on the...

9.8CVSS1AI score0.01236EPSS
Exploits0References12
Drupal
Drupal
•added 2021/09/15 12:0 a.m.•42 views

Drupal core - Moderately critical - Access Bypass - SA-CORE-2021-010

Under some circumstances, the Drupal core JSON:API module does not properly restrict access to certain content, which may result in unintended access bypass. Sites that do not have the JSON:API module enabled are not affected. This advisory is not covered by Drupal Steward...

7.5CVSS2.7AI score0.01053EPSS
Exploits0References9
Drupal
Drupal
•added 2021/08/25 12:0 a.m.•20 views

Admin Toolbar - Moderately critical - Cross Site Scripting, Access Bypass - SA-CONTRIB-2021-025

The Admin Toolbar admintoolbar module extends the default toolbar provided by Drupal Core with various features facilitating day-to-day editorial and administrative work. The Admin Toolbar Search sub-module of this module doesn't sanitize user input in certain cases, which leads to a...

5.9AI score
Exploits0References6
Drupal
Drupal
•added 2021/08/25 12:0 a.m.•14 views

Webform - Moderately critical - Cross Site Scripting - SA-CONTRIB-2021-026

The Webform module uses the CKEditor, library for WYSIWYG editing. CKEditor has released a security update that impacts Webform. An attacker that can create or edit content even without access to CKEditor themselves may be able to exploit one or more Cross-Site Scripting XSS vulnerabilities to...

5.9AI score
Exploits0References10
Drupal
Drupal
•added 2021/08/12 12:0 a.m.•20 views

Drupal core - Moderately critical - Third-party libraries - SA-CORE-2021-005

The Drupal project uses the CKEditor, library for WYSIWYG editing. CKEditor has released a security update that impacts Drupal. Vulnerabilities are possible if Drupal is configured to allow use of the CKEditor library for WYSIWYG editing. An attacker that can create or edit content even without...

6AI score
Exploits0References13
Drupal
Drupal
•added 2021/07/28 12:0 a.m.•20 views

Pages Restriction Access - Critical - Access bypass - SA-CONTRIB-2021-024

This project enables administrators to restrict access from anonymous and regular users to pre-defined pages. The administration routes used by the project lacked proper permissions, allowing untrusted users to access, create and modify the module's settings...

6.6AI score
Exploits0References7
Drupal
Drupal
•added 2021/07/21 12:0 a.m.•16 views

Form mode manager - Moderately critical - Access bypass - SA-CONTRIB-2021-023

This module provides a user interface that allows the implementation and use of Form modes without custom development. The module does not sufficiently respect access restrictions to entity forms for routes it creates to use specific form modes. This vulnerability is mitigated by the fact that an...

6.4AI score
Exploits0References8
Drupal
Drupal
•added 2021/07/21 12:0 a.m.•35 views

Drupal core - Critical - Drupal core - Critical - Third-party libraries - SA-CORE-2021-004

The Drupal project uses the pear ArchiveTar library, which has released a security update that impacts Drupal. The vulnerability is mitigated by the fact that Drupal core's use of the ArchiveTar library is not vulnerable, as it does not permit symlinks. Exploitation may be possible if contrib or...

7.1CVSS1.9AI score0.73377EPSS
Exploits0References10
Drupal
Drupal
•added 2021/06/30 12:0 a.m.•14 views

Block Content Revision UI - Moderately critical - Access bypass - SA-CONTRIB-2021-022

This module provides a revision UI for Block Content entities. The module doesn't sufficiently respect access restrictions to certain entities when used in conjunction with specific modules. This vulnerability is mitigated by the fact that an attacker must have a role with any of the permissions...

6.5AI score
Exploits0References6
Drupal
Drupal
•added 2021/06/30 12:0 a.m.•14 views

Linky Revision UI - Moderately critical - Access bypass - SA-CONTRIB-2021-021

This module provides a revision UI for Linky entities. The module doesn't sufficiently respect access restrictions to certain entities when used in conjunction with specific modules. This vulnerability is mitigated by the fact that an attacker must have a role with any of the permissions provided...

6.5AI score
Exploits0References6
Drupal
Drupal
•added 2021/06/30 12:0 a.m.•7 views

Apigee Edge - Moderately critical - Access bypass - SA-CONTRIB-2021-020

The Apigee Edge module allows connecting a Drupal site to Apigee Edge in order to build a developer portal. The module did not properly validate user access for data creation in certain circumstances...

6.9AI score
Exploits0References5
Drupal
Drupal
•added 2021/06/23 12:0 a.m.•22 views

Opigno Learning path - Less critical - UI redressing (clickjacking) - SA-CONTRIB-2021-018

This project is related to Opigno LMS distribution. It implements the learning path, that combines together in a very flexible way the differents steps of a training in Opigno LMS. The module does not set X-Frame-Options and blocks ability of other modules e.g Security Kit to add them, leaving it...

6.5AI score
Exploits0References7
Drupal
Drupal
•added 2021/06/23 12:0 a.m.•18 views

Opigno group manager - Less critical - UI redressing (clickjacking) - SA-CONTRIB-2021-019

This project is related to Opigno LMS distribution. It implements the group manager in the Opigno LMS. The module does not set X-Frame-Options and blocks ability of other modules e.g Security Kit to add them, leaving it vulnerable to Clickjacking...

6.6AI score
Exploits0References7
Drupal
Drupal
•added 2021/06/16 12:0 a.m.•14 views

Linky Revision UI - Moderately critical - Access bypass - SA-CONTRIB-2021-016

This module provides a revision UI to Linky entities. The module doesn't sufficiently respect access restrictions to certain entities when used in conjunction with specific modules. This vulnerability is mitigated by the fact that an attacker must have a role with any of the permissions provided ...

6.5AI score
Exploits0References6
Drupal
Drupal
•added 2021/06/16 12:0 a.m.•35 views

Chaos Tool Suite (ctools) - Moderately critical - Access bypass - SA-CONTRIB-2021-015

Chaos tool suite ctools module provides a number of APIs and extensions for Drupal, its 8.x-3.x branch is a start from scratch to evaluate the features of ctools that didn't make it into Drupal Core 8.0.x and port them. The module doesn't sufficiently handle block access control on its EntityView...

6.5AI score
Exploits0References7
Drupal
Drupal
•added 2021/06/16 12:0 a.m.•18 views

Block Content Revision UI - Moderately critical - Access bypass - SA-CONTRIB-2021-017

This module provides a revision UI to Block Content entities. The module doesn't sufficiently respect access restrictions to certain entities when used in conjunction with specific modules. This vulnerability is mitigated by the fact that an attacker must have a role with any of the permissions...

6.5AI score
Exploits0References6
Drupal
Drupal
•added 2021/06/02 12:0 a.m.•17 views

GraphQL - Moderately critical - Information Disclosure - SA-CONTRIB-2021-013

This module lets you craft and expose a GraphQL web service API. The module does not sufficiently protect arbitrary exception and error messages thereby exposing an information disclosure vulnerability. This vulnerability is mitigated by the fact that a GraphQL server must be enabled and a data...

6.3AI score
Exploits0References6Affected Software1
Drupal
Drupal
•added 2021/06/02 12:0 a.m.•15 views

Open Social - Moderately critical - SQL Injection - SA-CONTRIB-2021-010

This Open Social distribution provides a turn-key system for building customized social networks. The module doesn't sufficiently process data in certain circumstances. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "access mentions"...

6.4AI score
Exploits0References10
Drupal
Drupal
•added 2021/06/02 12:0 a.m.•13 views

Frequently Asked Questions - Moderately critical - Cross Site Scripting - SA-CONTRIB-2021-012

The Frequently Asked Questions faq module allows users, with appropriate permissions, to create question and answer pairs which they want displayed on the 'faq' page. The 'faq' page is automatically generated from the FAQ nodes configured. Basic Views layouts are also provided and can be customis...

6AI score
Exploits0References6
Drupal
Drupal
•added 2021/06/02 12:0 a.m.•15 views

OpenID Connect / OAuth client - Moderately critical - Access bypass - SA-CONTRIB-2021-014

This module allows users to authenticate against an Oauth 2.0 / OpenID Connect identity provider to login to your Drupal site. The module doesn't sufficiently protect against unauthorized local access, by way of using the 'password reset' facility, for users who are supposed to only be able to lo...

6.2AI score
Exploits0References6
Drupal
Drupal
•added 2021/06/02 12:0 a.m.•12 views

Open Social - Critical - Authentication Bypass - SA-CONTRIB-2021-011

Open Social is a Drupal distribution for online communities. The included socialmagiclogin module doesn't sufficiently validate magic login URLs for user accounts. The lack of validation makes it possible for an adversary to forge valid login URLs and login to such an account. This vulnerability ...

6.6AI score
Exploits0References7
Drupal
Drupal
•added 2021/05/26 12:0 a.m.•29 views

Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2021-003

Update: 2021-06-11: Added CVE-2021-33829 identifier Drupal core uses the third-party CKEditor library. This library has an error in parsing HTML that could lead to an XSS attack. CKEditor 4.16.1 and later include the fix. Update: 2021-06-11: More details are available on CKEditor's blog. Users of...

6.1CVSS1AI score0.03189EPSS
Exploits0References12
Drupal
Drupal
•added 2021/05/12 12:0 a.m.•19 views

Chaos Tool Suite (ctools) - Moderately critical - Information disclosure - SA-CONTRIB-2021-009

Chaos tool suite ctools module provides a number of APIs and extensions for Drupal, it's 8.x-3.x branch is a start from scratch to evaluate the features of ctools that didn't make it into Drupal Core 8.0.x and port them. The module doesn't sufficiently handle access control on its EntityView...

6.6AI score
Exploits0References6
Drupal
Drupal
•added 2021/05/12 12:0 a.m.•14 views

Facets - Moderately critical - Cross site scripting - SA-CONTRIB-2021-008

This module enables you to add customizable facets on search pages, from core search or searches provided by Search API. The module doesn't sufficiently filter all output in certain circumstances. This vulnerability is mitigated by the fact that an attacker must have a role with the permission...

6.4AI score
Exploits0References6
Drupal
Drupal
•added 2021/05/12 12:0 a.m.•8 views

Gutenberg - Critical - Access bypass - SA-CONTRIB-2021-007

This module provides a new UI experience for node editing using the Gutenberg Editor library. The module did not correctly validate access rules in certain situations allowing anonymous users to delete blocks...

6.6AI score
Exploits0References8
Drupal
Drupal
•added 2021/04/28 12:0 a.m.•13 views

SAML Authentication - Moderately critical - Access bypass - SA-CONTRIB-2021-006

The SAML Authentication module allows users to authenticate against a SAML identity provider to login to your Drupal site. The module doesn't sufficiently protect against unauthorized local access, by way of using the 'password reset' facility, for users who are supposed to only be able to log in...

6.3AI score
Exploits0References12
Drupal
Drupal
•added 2021/04/21 12:0 a.m.•58 views

Drupal core - Critical - Cross-site scripting - SA-CORE-2021-002

Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. Not all sites and users are affected, but configuration changes to prevent the exploit might be impractical and will vary between sites. Therefore, we recommend all sites update to this relea...

6.1CVSS1.5AI score0.00671EPSS
Exploits0References18
Drupal
Drupal
•added 2021/03/17 12:0 a.m.•5 views

Fast Autocomplete - Moderately critical - Access bypass - SA-CONTRIB-2021-005

The Fast Autocomplete module provides fast IMDB-like suggestions below a text input field. Suggestions are stored as JSON files in the public files folder so that they can be provided to the browser relatively fast without the need for Drupal to be bootstrapped. The module doesn't correctly...

6.7AI score
Exploits0References4
Drupal
Drupal
•added 2021/03/03 12:0 a.m.•46 views

Webform - Moderately critical - Access bypass - SA-CONTRIB-2021-004

The Webform module for Drupal 8/9 includes a default Contact webform, which sends a notification email to the site owner and a confirmation email to the email address supplied via the form. The confirmation email can be used as an open mail relay to send an email to any email address. This...

6.4AI score
Exploits0References9
Drupal
Drupal
•added 2021/01/27 12:0 a.m.•19 views

Subgroup - Less critical - Access bypass - SA-CONTRIB-2021-003

This module enables you to add groups to other groups in a tree structure where access can be inherited up or down the tree. When you configure Subgroup to have a tree with at least three levels, users may inadvertently get permissions in a group that is an uncle or cousin of the source group,...

6.6AI score
Exploits0References6Affected Software1
Drupal
Drupal
•added 2021/01/27 12:0 a.m.•14 views

Open Social - Moderately critical - Access bypass - SA-CONTRIB-2021-002

The Social User Export module enables users within Open Social to create an export of users and download this to a CSV file. The module doesn't sufficiently check access when building the CSV file, allowing logged-in users without the manage members permission to be able to export all data from a...

6.2AI score
Exploits0References8
Total number of security vulnerabilities1940