drupal/core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-MH4H-27GQ-CXWJMediumdrupal/core: Drupal core Access bypassGHSA-7GWJ-7FHM-VW4WMediumdrupal/core: Drupal core unrestricted file uploadGHSA-PR99-C33P-FWF6Mediumdrupal/core: Drupal core Denial of ServiceGHSA-7V68-3PR5-H3CRCriticaldrupal/core: Drupal Core Insufficient Contextual Links validation leads to Remote Code ExecutionGHSA-6MGP-V5CM-GHG5Criticaldrupal/core: Drupal core Remote Code ExecutionGHSA-GFVF-2F25-F34RMediumdrupal/core: Drupal Anonymous Open Redirect GHSA-7F4F-P7MQ-P4FVMediumdrupal/core: Drupal External URL injection through URL aliases leading to Open RedirectGHSA-F84Q-MGJ9-8JFCMediumdrupal/core: Drupal Content moderation Access bypassCVE-2018-7602Criticaldrupal/core: Drupal Core Remote Code Execution VulnerabilityGHSA-6CCV-8FGF-CJPWMediumdrupal/core: Drupal core Denial of Service vulnerabilityCVE-2024-22362Mediumdrupal/core: Drupal Denial of Service vulnerabilityCVE-2019-6342Criticaldrupal/core: Drupal Improper Access ControlCVE-2023-5256Criticaldrupal/core: Cache poisoning in drupal/coreCVE-2023-31250Criticaldrupal/core: Access bypass in Drupal coreCVE-2022-25273Highdrupal/core: Improper input validation in Drupal coreCVE-2022-25274Mediumdrupal/core: Access bypass in Drupal coreCVE-2022-25276Mediumdrupal/core: Lack of domain validation in Druple coreCVE-2022-25278Mediumdrupal/core: Access bypass in Drupal CoreCVE-2022-25277Highdrupal/core: Drupal core arbitrary PHP code executionCVE-2022-25275Highdrupal/core: Drupal core Information Disclosure vulnerabilityCVE-2020-13688Mediumdrupal/core: Drupal Core Cross-site scripting vulnerabilityCVE-2020-13663Highdrupal/core: Drupal Core Cross-Site Request Forgery (CSRF) vulnerabilityCVE-2020-13667Mediumdrupal/core: Drupal Core Access bypass vulnerability CVE-2020-13665Criticaldrupal/core: Drupal Core Access bypass vulnerabilityCVE-2020-13664Highdrupal/core: Drupal Core Arbitrary PHP code execution vulnerability

Stop the waste.
Protect your environment with Kodem.