FLAT-5DOQZ (CVE-2024-55634)
Lack of data validation - Type confusion In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-VLVM6 (CVE-2024-55638)
Authentication mechanism absence or evasion In drupal/drupal
4.8
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-T4OMH (CVE-2024-45440)
Technical information leak In drupal/drupal
1.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-LDLNY (GHSA-qf65-hph9-453r)
Server side cross-site scripting In drupal/drupal
1.2
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-WLJ57 (GHSA-j66p-fvp2-fxhj)
Server side template injection In drupal/drupal
8.1
High
Ecosystem: Packagist
Package: drupal/drupal
FLAT-HR9WY (GHSA-337w-fxpq-5m34)
Server side cross-site scripting In drupal/drupal
0.6
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-TDLHI (GHSA-wxfg-253g-m7r4)
Uncontrolled external site redirect In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-P9PBQ (GHSA-m9fv-whq2-6wmc)
Dependency Confusion In drupal/drupal
6.2
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-VBEEC (GHSA-5x28-3f32-x523)
Improper authorization control for web services In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-MTTRH (GHSA-w333-5f96-mjrr)
Race condition In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-E1B4N (GHSA-jf8c-36vw-98x4)
Server side template injection In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-OU6EG (GHSA-jjx7-8462-w4m4)
Lack of data validation In drupal/drupal
0.6
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-11VCN (GHSA-58xv-7h9r-mx3c)
Insecure file upload In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-UWF5B (GHSA-x6v2-xmrq-574j)
Uncontrolled external site redirect In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-7PJDZ (GHSA-86xw-vmcx-9mj4)
Improper authorization control for web services In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-LQ3GJ (GHSA-r67r-42wx-c8r7)
Uncontrolled external site redirect In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-4A9SQ (CVE-2022-25278)
Improper authorization control for web services In drupal/drupal
6.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-FY7BL (CVE-2022-25275)
Improper authorization control for web services In drupal/drupal
6.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-0F943 (CVE-2022-25277)
Insecure file upload In drupal/drupal
6.1
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-1JU1Z (CVE-2020-13663)
Cross-site request forgery In drupal/drupal
6.3
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-PAARG (CVE-2020-13662)
Uncontrolled external site redirect In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-CAQPK (CVE-2020-13666)
Reflected cross-site scripting (XSS) In drupal/drupal
1.2
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-NYRNO (CVE-2020-13664)
Server side template injection In drupal/drupal
6.3
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-29XZT (CVE-2019-6341)
Server side cross-site scripting In drupal/drupal
1.2
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-NBWS4 (CVE-2010-3094)
Server side cross-site scripting In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-UZJLA (CVE-2012-1589)
Uncontrolled external site redirect In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-6E991 (CVE-2012-2153)
Improper authorization control for web services In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-CBERE (CVE-2013-6389)
Uncontrolled external site redirect In drupal/drupal
6.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-PG8PS (CVE-2016-3166)
Lack of data validation In drupal/drupal
4.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-0XXMG (CVE-2016-3164)
Uncontrolled external site redirect In drupal/drupal
4.9
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-18L0A (CVE-2016-3169)
Excessive privileges In drupal/drupal
8.4
High
Ecosystem: Packagist
Package: drupal/drupal
FLAT-WPBRJ (CVE-2016-3165)
Improper authorization control for web services In drupal/drupal
6.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-CSKWJ (CVE-2016-3170)
Business information leak In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-511B4 (CVE-2016-7571)
Reflected cross-site scripting (XSS) In drupal/drupal
1.2
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-OOL7T (CVE-2016-6211)
Excessive privileges In drupal/drupal
6.3
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-ZB5K5 (CVE-2016-6212)
Business information leak In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-899GK (CVE-2008-4793)
Improper authorization control for web services In drupal/drupal
2.7
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-KZ1SX (CVE-2017-6929)
Reflected cross-site scripting (XSS) In drupal/drupal
0.6
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-PO8T3 (CVE-2017-6932)
Uncontrolled external site redirect In drupal/drupal
0.6
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-NKNMW (CVE-2018-9861)
Reflected cross-site scripting (XSS) In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-JBLYB (CVE-2017-6922)
Local file inclusion In drupal/drupal
4.9
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-I2BRO (CVE-2017-6921)
Lack of data validation In drupal/drupal
4.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-88O50 (CVE-2017-6924)
Excessive privileges In drupal/drupal
6.9
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-U9PDB (CVE-2019-6340)
Insecure deserialization In drupal/drupal
7.2
High
Ecosystem: Packagist
Package: drupal/drupal
FLAT-6NQ23 (CVE-2008-3218)
Server side cross-site scripting In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-MX4Q4 (CVE-2020-13669)
Reflected cross-site scripting (XSS) In drupal/drupal
0.6
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-Z0ZD5 (CVE-2020-13668)
Reflected cross-site scripting (XSS) In drupal/drupal
1.3
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-DJVKV (CVE-2020-13670)
Sensitive information sent insecurely In drupal/drupal
6.6
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-JYV1I (CVE-2019-6339)
Lack of data validation In drupal/drupal
8.1
High
Ecosystem: Packagist
Package: drupal/drupal
FLAT-MKLZK (CVE-2020-13671)
Insecure file upload In drupal/drupal
6.3
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-ED2RZ (CVE-2019-6338)
Insecure deserialization In drupal/drupal
6.1
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-DOXNZ (CVE-2019-10909)
Server side cross-site scripting In drupal/drupal
1.2
Low
Ecosystem: Packagist
Package: drupal/drupal
FLAT-BIQFS (CVE-2017-6923)
Improper authorization control for web services In drupal/drupal
4.9
Medium
Ecosystem: Packagist
Package: drupal/drupal
FLAT-DHVVH (SA-CORE-2018-003)
Reflected cross-site scripting (XSS) In drupal/drupal
1.2
Low
Ecosystem: Packagist
Package: drupal/drupal