Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drupal drupal 7.4 vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2012-1588
Algorithmic complexity vulnerability in the _filter_url function in the text filtering system (modules/filter/filter.module) in Drupal 7.x prior to 7.14 allows remote authenticated users with certain roles to cause a denial of service (CPU consumption) via a long email address.
Drupal Drupal 7.0
Drupal Drupal 7.12
Drupal Drupal 7.5
Drupal Drupal 7.13
Drupal Drupal 7.x-dev
Drupal Drupal 7.2
Drupal Drupal 7.6
Drupal Drupal 7.9
Drupal Drupal 7.4
Drupal Drupal 7.7
Drupal Drupal 7.1
Drupal Drupal 7.3
Drupal Drupal 7.8
Drupal Drupal 7.11
Drupal Drupal 7.10
3.5
CVSSv2
CVE-2009-3652
Cross-site scripting (XSS) vulnerability in Organic Groups (OG) 5.x-7.x prior to 5.x-7.4, 5.x-8.x prior to 5.x-8.1, and 6.x-1.x prior to 6.x-1.4, a module for Drupal, allows remote authenticated users, with create or edit group nodes permissions, to inject arbitrary web script or...
Moshe Weitzman Organic Groups 5.x-7.0-rc2
Moshe Weitzman Organic Groups 5.x-7.0-rc1
Moshe Weitzman Organic Groups 6.x-1.0
Moshe Weitzman Organic Groups 6.x-1.0-rc9
Moshe Weitzman Organic Groups 6.x-1.0-rc8
Moshe Weitzman Organic Groups 6.x-1.0-rc1
Moshe Weitzman Organic Groups 6.x-1.0-beta1
Moshe Weitzman Organic Groups 5.x-7.0
Moshe Weitzman Organic Groups 5.x-7.0-rc5
Moshe Weitzman Organic Groups 5.x-7.2
Moshe Weitzman Organic Groups 6.x-1.3
Moshe Weitzman Organic Groups 6.x-1.0-rc5
Moshe Weitzman Organic Groups 6.x-1.0-rc4
Moshe Weitzman Organic Groups 5.x-7.0-rc4
Moshe Weitzman Organic Groups 5.x-7.0-rc3
Moshe Weitzman Organic Groups 6.x-1.2
Moshe Weitzman Organic Groups 6.x-1.1
Moshe Weitzman Organic Groups 6.x-1.0-rc3
Moshe Weitzman Organic Groups 6.x-1.0-rc2
Moshe Weitzman Organic Groups 5.x-7.1
Moshe Weitzman Organic Groups 5.x-7.3
Moshe Weitzman Organic Groups 5.x-8.0
2.6
CVSSv2
CVE-2013-0244
Cross-site scripting (XSS) vulnerability in Drupal 6.x prior to 6.28 and 7.x prior to 7.19, when running with older versions of jQuery that are vulnerable to CVE-2011-4969, allows remote malicious users to inject arbitrary web script or HTML via vectors involving unspecified Java...
Drupal Drupal 7.0
Drupal Drupal 7.1
Drupal Drupal 7.10
Drupal Drupal 7.18
Drupal Drupal 7.2
Drupal Drupal 7.9
Drupal Drupal 7.x-dev
Drupal Drupal 7.14
Drupal Drupal 7.15
Drupal Drupal 7.5
Drupal Drupal 7.6
Drupal Drupal 7.16
Drupal Drupal 7.17
Drupal Drupal 7.7
Drupal Drupal 7.8
Drupal Drupal 7.11
Drupal Drupal 7.12
Drupal Drupal 7.13
Drupal Drupal 7.3
Drupal Drupal 7.4
Drupal Drupal 6.0
Drupal Drupal 6.13
2.1
CVSSv2
CVE-2014-5021
Cross-site scripting (XSS) vulnerability in the Form API in Drupal 6.x prior to 6.32 and possibly 7.x prior to 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via an option group label.
Drupal Drupal 7.0
Drupal Drupal 7.15
Drupal Drupal 7.16
Drupal Drupal 7.17
Drupal Drupal 7.18
Drupal Drupal 7.5
Drupal Drupal 7.6
Drupal Drupal 7.7
Drupal Drupal 7.8
Drupal Drupal 7.28
Drupal Drupal 7.1
Drupal Drupal 7.22
Drupal Drupal 7.23
Drupal Drupal 7.24
Drupal Drupal 7.25
Drupal Drupal 7.11
Drupal Drupal 7.13
Drupal Drupal 7.2
Drupal Drupal 7.21
Drupal Drupal 7.26
Drupal Drupal 7.3
Drupal Drupal 7.x-dev
2.1
CVSSv2
CVE-2013-6387
Cross-site scripting (XSS) vulnerability in the Image module in Drupal 7.x prior to 7.24 allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the description field.
Drupal Drupal 7.0
Drupal Drupal 7.16
Drupal Drupal 7.17
Drupal Drupal 7.23
Drupal Drupal 7.3
Drupal Drupal 7.x-dev
Drupal Drupal 7.1
Drupal Drupal 7.10
Drupal Drupal 7.11
Drupal Drupal 7.18
Drupal Drupal 7.19
Drupal Drupal 7.4
Drupal Drupal 7.5
Drupal Drupal 7.12
Drupal Drupal 7.13
Drupal Drupal 7.2
Drupal Drupal 7.20
Drupal Drupal 7.6
Drupal Drupal 7.7
Drupal Drupal 7.14
Drupal Drupal 7.15
Drupal Drupal 7.21
2.1
CVSSv2
CVE-2013-0245
The printer friendly version functionality in the Book module in Drupal 6.x prior to 6.28 and 7.x prior to 7.19 does not properly restrict access to node that are part of a book outline, which allows remote authenticated users with the "access printer-friendly version" ...
Drupal Drupal 6.27
Drupal Drupal 6.25
Drupal Drupal 6.15
Drupal Drupal 6.18
Drupal Drupal 6.22
Drupal Drupal 6.21
Drupal Drupal 6.0
Drupal Drupal 6.7
Drupal Drupal 6.26
Drupal Drupal 6.8
Drupal Drupal 6.2
Drupal Drupal 6.10
Drupal Drupal 6.24
Drupal Drupal 6.23
Drupal Drupal 6.4
Drupal Drupal 6.6
Drupal Drupal 6.13
Drupal Drupal 6.12
Drupal Drupal 6.20
Drupal Drupal 6.19
Drupal Drupal 6.17
Drupal Drupal 6.16
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6