drupal/drupal vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2020-13672Mediumdrupal/core: Drupal core Cross-site Scripting (XSS) vulnerabilityCVE-2019-6339Criticaldrupal/drupal: Arbitrary PHP code execution in DrupalCVE-2020-13671Highdrupal/core: Drupal core Unrestricted Upload of File with Dangerous TypeCVE-2019-11831Criticaltypo3/phar-stream-wrapper: Directory Traversal in typo3/phar-stream-wrapperCVE-2021-33829Mediumckeditor4: ckeditor4 vulnerable to cross-site scriptingCVE-2019-6338Highdrupal/drupal: Drupal core third-party PEAR Archive_Tar library is vulnerable to Deserialization of Untrusted DataCVE-2019-10909Mediumsymfony/framework-bundle: Symfony Cross-site Scripting (XSS) vulnerabilityCVE-2017-6923Mediumdrupal/core: Missing Authorization in Drupal

Stop the waste.
Protect your environment with Kodem.