drupal/core vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2020-13675Criticaldrupal/core: Unrestricted Upload of File with Dangerous Type in Drupal coreCVE-2020-13674Mediumdrupal/core: Cross-Site Request Forgery in Drupal coreCVE-2020-13672Mediumdrupal/core: Drupal core Cross-site Scripting (XSS) vulnerabilityCVE-2020-13676Mediumdrupal/core: Incorrect Authorization in Drupal coreCVE-2020-13677Highdrupal/core: Drupal core access bypass vulnerabilityCVE-2019-6339Criticaldrupal/drupal: Arbitrary PHP code execution in DrupalCVE-2020-13671Highdrupal/core: Drupal core Unrestricted Upload of File with Dangerous TypeCVE-2019-11831Criticaltypo3/phar-stream-wrapper: Directory Traversal in typo3/phar-stream-wrapperCVE-2021-33829Mediumckeditor4: ckeditor4 vulnerable to cross-site scriptingCVE-2019-10909Mediumsymfony/framework-bundle: Symfony Cross-site Scripting (XSS) vulnerabilityCVE-2017-6923Mediumdrupal/core: Missing Authorization in Drupal

Stop the waste.
Protect your environment with Kodem.