Description
The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules.
Remediation
References
Related Vulnerabilities
Grafana Incorrect Authorization Vulnerability (CVE-2026-21721)
Next.js Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-34351)
WordPress Plugin WP Songbook Cross-Site Scripting (2.0.11)
Jenkins URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2026-53440)
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-41799)