3.1

CVSS3.1

CVE-2024-13293 - POST File - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2024-059

Cross-Site Request Forgery (CSRF) vulnerability in Drupal POST File allows Cross Site Request Forgery.This issue affects POST File: from 0.0.0 before 1.0.2.

๐Ÿ“… Published: Jan. 9, 2025, 8:17 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:31 p.m.

4.8

CVSS3.1

CVE-2024-13292 - Tooltip - Moderately critical - Cross site scripting - SA-CONTRIB-2024-058

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Tooltip allows Cross-Site Scripting (XSS).This issue affects Tooltip: from 0.0.0 before 1.1.2.

๐Ÿ“… Published: Jan. 9, 2025, 8:16 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:31 p.m.

7.3

CVSS3.1

CVE-2024-13291 - Basic HTTP Authentication - Critical - Access bypass - SA-CONTRIB-2024-057

Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.This issue affects Basic HTTP Authentication: from 7.X-1.0 before 7.X-1.4.

๐Ÿ“… Published: Jan. 9, 2025, 8:16 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:31 p.m.

5.3

CVSS3.1

CVE-2024-13290 - OhDear Integration - Moderately critical - Access bypass - SA-CONTRIB-2024-056

Incorrect Authorization vulnerability in Drupal OhDear Integration allows Forceful Browsing.This issue affects OhDear Integration: from 0.0.0 before 2.0.4.

๐Ÿ“… Published: Jan. 9, 2025, 8:15 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:31 p.m.

5.4

CVSS3.1

CVE-2024-13289 - Cookiebot + GTM - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-055

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Cookiebot + GTM allows Cross-Site Scripting (XSS).This issue affects Cookiebot + GTM: from 0.0.0 before 1.0.18.

๐Ÿ“… Published: Jan. 9, 2025, 8:15 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:26 p.m.

4.3

CVSS3.1

CVE-2024-13288 - Monster Menus - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-052

Deserialization of Untrusted Data vulnerability in Drupal Monster Menus allows Object Injection.This issue affects Monster Menus: from 0.0.0 before 9.3.4, from 9.4.0 before 9.4.2.

๐Ÿ“… Published: Jan. 9, 2025, 8:14 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:26 p.m.

5.4

CVSS3.1

CVE-2024-13287 - Views SVG Animation - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-051

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Views SVG Animation allows Cross-Site Scripting (XSS).This issue affects Views SVG Animation: from 0.0.0 before 1.0.1.

๐Ÿ“… Published: Jan. 9, 2025, 8:13 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:26 p.m.

5.4

CVSS3.1

CVE-2024-13286 - SVG Embed - Moderately critical - Cross site scripting - SA-CONTRIB-2024-050

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal SVG Embed allows Cross-Site Scripting (XSS).This issue affects SVG Embed: from 0.0.0 before 2.1.2.

๐Ÿ“… Published: Jan. 9, 2025, 8:13 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:27 p.m.

9.8

CVSS3.1

CVE-2024-13285 - wkhtmltopdf - Highly critical - Unsupported - SA-CONTRIB-2024-049

Vulnerability in Drupal wkhtmltopdf.This issue affects wkhtmltopdf: *.*.

๐Ÿ“… Published: Jan. 9, 2025, 8:11 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:27 p.m.

8.8

CVSS3.1

CVE-2024-13284 - Gutenberg - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2024-048

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Gutenberg allows Cross Site Request Forgery.This issue affects Gutenberg: from 0.0.0 before 2.13.0, from 3.0.0 before 3.0.5.

๐Ÿ“… Published: Jan. 9, 2025, 7:36 p.m. ๐Ÿ”„ Last Modified: Sept. 2, 2025, 6:27 p.m.
Total resulsts: 349182
Page 7197 of 34,919
ยซ previous page ยป next page
Filters