Severity High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Adminer 4.6.2 file disclosure vulnerability CWE-22 CWE-22 High Adobe Coldfusion 8 multiple linked XSS vulnerabilies CVE-2009-1872 CWE-79 CWE-79 High Apache 2.2.14 mod_isapi Dangling Pointer CVE-2010-0425 CWE-20 CWE-20 High Apache 2.x version equal to 2.0.51 CVE-2004-0811 CWE-264 CWE-264 Medium Apache 2.x version older than 2.0.43 CVE-2002-0840 CVE-2002-1156 CWE-538 CWE-538 Medium Apache 2.x version older than 2.0.45 CVE-2003-0132 CWE-400 CWE-400 Medium Apache 2.x version older than 2.0.46 CVE-2003-0083 CVE-2003-0134 CVE-2003-0189 CVE-2003-0245 CWE-20 CWE-20 Medium Apache 2.x version older than 2.0.47 CVE-2003-0192 CVE-2003-0253 CVE-2003-0254 CWE-20 CWE-20 Medium Apache 2.x version older than 2.0.48 CVE-2003-0542 CVE-2003-0789 CWE-119 CWE-119 Medium Apache 2.x version older than 2.0.49 CVE-2003-0020 CVE-2004-0113 CVE-2004-0174 CWE-20 CWE-20 Medium Apache 2.x version older than 2.0.51 CVE-2004-0747 CVE-2004-0748 CVE-2004-0751 CVE-2004-0786 CVE-2004-0809 CWE-119 CWE-119 Medium Apache 2.x version older than 2.0.55 CVE-2005-1268 CVE-2005-2088 CVE-2005-2491 CVE-2005-2700 CVE-2005-2728 CVE-2005-2970 CWE-119 CWE-119 Medium Apache 2.x version older than 2.0.61 CVE-2006-5752 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CWE-701 CWE-701 Medium Apache 2.x version older than 2.0.63 CVE-2007-5000 CVE-2007-6388 CVE-2008-0005 CWE-79 CWE-79 Medium Apache 2.x version older than 2.2.3 CVE-2006-3747 CWE-189 CWE-189 Medium Apache 2.x version older than 2.2.6 CVE-2006-5752 CVE-2007-1862 CVE-2007-1863 CVE-2007-3304 CVE-2007-3847 CWE-20 CWE-20 Medium Apache 2.x version older than 2.2.8 CVE-2007-5000 CVE-2007-6388 CVE-2007-6421 CVE-2007-6422 CVE-2008-0005 CWE-79 CWE-79 Medium Apache 2.x version older than 2.2.9 CVE-2007-6420 CVE-2008-2364 CWE-399 CWE-399 Medium Apache 2.x version older than 2.2.10 CVE-2008-2939 CVE-2010-2791 CWE-79 CWE-79 Low Apache error log escape sequence injection vulnerability CVE-2003-0020 CWE-20 CWE-20 Medium Apache httpd remote denial of service CVE-2011-3192 CWE-399 CWE-399 Medium Apache httpOnly cookie disclosure CVE-2012-0053 CWE-264 CWE-264 Medium Apache mod_rewrite off-by-one buffer overflow vulnerability CVE-2006-3747 CWE-189 CWE-189 High Apache Tomcat directory host Appbase authentication bypass vulnerability CVE-2009-2901 CWE-264 CWE-264 Medium Apache Tomcat version older than 4.1.37 CVE-2005-3164 CVE-2007-1355 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3383 CVE-2007-3385 CVE-2007-5333 CVE-2007-5461 CWE-79 CWE-79 Medium Apache Tomcat version older than 4.1.39 CVE-2008-0128 CVE-2008-1232 CVE-2008-2370 CWE-22 CWE-22 Medium Apache Tomcat version older than 5.5.25 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3385 CVE-2007-3386 CWE-79 CWE-79 Medium Apache Tomcat version older than 5.5.26 CVE-2007-5333 CVE-2007-5342 CVE-2007-5461 CVE-2007-6286 CWE-264 CWE-264 Medium Apache Tomcat version older than 5.5.27 CVE-2008-1232 CVE-2008-1947 CVE-2008-2370 CWE-22 CWE-22 Medium Apache Tomcat version older than 6.0.6 CVE-2007-1358 CWE-79 CWE-79 Low Apache Tomcat version older than 6.0.9 CVE-2008-0128 CWE-614 CWE-614 Medium Apache Tomcat version older than 6.0.10 CVE-2007-0450 CWE-22 CWE-22 Medium Apache Tomcat version older than 6.0.11 CVE-2005-2090 CVE-2007-1355 CWE-79 CWE-79 Medium Apache Tomcat version older than 6.0.14 CVE-2007-2449 CVE-2007-2450 CVE-2007-3382 CVE-2007-3385 CVE-2007-3386 CWE-79 CWE-79 Medium Apache Tomcat version older than 6.0.16 CVE-2007-5333 CVE-2007-5342 CVE-2007-5461 CVE-2007-6286 CVE-2008-0002 CWE-264 CWE-264 Medium Apache Tomcat version older than 6.0.18 CVE-2008-1232 CVE-2008-1947 CVE-2008-2370 CWE-79 CWE-79 Medium Apache Tomcat version older than 6.0.35 CVE-2011-3190 CVE-2011-3375 CVE-2012-0022 CWE-264 CWE-264 High Apache Tomcat version older than 6.0.36 CVE-2012-2733 CVE-2012-3439 CVE-2012-3546 CVE-2012-4431 CVE-2012-4534 CWE-20 CWE-20 High Apache Tomcat version older than 7.0.21 CVE-2011-3190 CWE-264 CWE-264 High Apache Tomcat version older than 7.0.23 CVE-2012-0022 CWE-189 CWE-189 High Apache Tomcat version older than 7.0.28 CVE-2012-2733 CVE-2012-4534 CWE-20 CWE-20 High Apache Tomcat version older than 7.0.30 CVE-2012-3439 CVE-2012-3544 CVE-2012-3546 CWE-20 CWE-20 High Apache Tomcat version older than 7.0.32 CVE-2012-4431 CWE-264 CWE-264 Medium Apache Tomcat WAR file directory traversal vulnerability CVE-2009-2693 CVE-2009-2901 CWE-22 CWE-22 Medium Apache version older than 1.3.27 CVE-2002-0839 CVE-2002-0840 CVE-2002-0843 CWE-119 CWE-119 Medium Apache version older than 1.3.28 CVE-2003-0460 CWE-20 CWE-20 Medium Apache version older than 1.3.29 CVE-2003-0542 CWE-119 CWE-119 Medium Apache version older than 1.3.31 CVE-2003-0020 CVE-2003-0987 CVE-2003-0993 CVE-2004-0174 CWE-264 CWE-264 Medium Apache version older than 1.3.34 CVE-2005-2088 CWE-20 CWE-20 Medium Apache version older than 1.3.37 CVE-2006-3747 CWE-189 CWE-189 Medium Apache version older than 1.3.39 CVE-2006-5752 CVE-2007-3304 CWE-79 CWE-79 Medium Apache version older than 1.3.41 CVE-2007-6388 CWE-79 CWE-79 Medium Apache version up to 1.3.33 htpasswd local overflow CVE-2006-1078 CWE-119 CWE-119 Low Check for apache versions up to 1.3.25, 2.0.38 CVE-2002-0392 CWE-119 CWE-119 High ColdFusion 8 FCKEditor file upload vulnerability CVE-2009-2265 CWE-22 CWE-22 High ColdFusion 9 solr service exposed CVE-2010-0185 CWE-264 CWE-264 High ColdFusion directory traversal CVE-2010-2861 CWE-22 CWE-22 High ColdFusion User-Agent cross-site scripting CVE-2007-0817 CWE-79 CWE-79 High Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.1) CVE-2005-0682 CWE-79 CWE-79 High Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.5) CVE-2005-3973 CWE-79 CWE-79 High Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.7) CVE-2006-1226 CWE-79 CWE-79 High Drupal Core 4.5.x Mail Header Injection (4.5.0 - 4.5.7) CWE-20 CWE-20 High Drupal Core 4.5.x Multiple Vulnerabilities (4.5.0 - 4.5.5) CWE-79 CWE-113 CWE-79 CWE-113 High Drupal Core 4.5.x Security Bypass (4.5.0 - 4.5.7) CWE-264 CWE-264 High Drupal Core 4.5.x Session Fixation (4.5.0 - 4.5.7) CWE-384 CWE-384 High Drupal Core 4.6.x Arbitrary Code Execution (4.6.0 - 4.6.6) CVE-2006-2743 CWE-95 CWE-95 High Drupal Core 4.6.x Arbitrary Code Execution (4.6.0 - 4.6.7) CVE-2006-2831 CWE-95 CWE-95 High Drupal Core 4.6.x Cross-Site Request Forgery (4.6.0 - 4.6.9) CVE-2006-5476 CWE-352 CWE-352 High Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.3) CVE-2005-3973 CWE-79 CWE-79 High Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.5) CVE-2006-1226 CWE-79 CWE-79 High Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.7) CVE-2006-2833 CWE-79 CWE-79 High Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.8) CVE-2006-4002 CWE-79 CWE-79 High Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.10) CVE-2007-0136 CWE-79 CWE-79 High Drupal Core 4.6.x Denial of Service (4.6.0 - 4.6.10) CVE-2007-0124 CWE-400 CWE-400 High Drupal Core 4.6.x Form Action Attribute Injection (4.6.0 - 4.6.9) CVE-2006-5477 CWE-20 CWE-20 High Drupal Core 4.6.x Mail Header Injection (4.6.0 - 4.6.5) CWE-20 CWE-20 High Drupal Core 4.6.x Multiple Cross-Site Scripting Vulnerabilities (4.6.0 - 4.6.9) CVE-2006-5475 CWE-79 CWE-79 High Drupal Core 4.6.x Multiple Vulnerabilities (4.6.0 - 4.6.3) CWE-79 CWE-113 CWE-79 CWE-113 High Drupal Core 4.6.x Security Bypass (4.6.0 - 4.6.3) CVE-2005-3974 CWE-264 CWE-264 High Drupal Core 4.6.x Security Bypass (4.6.0 - 4.6.5) CWE-264 CWE-264 High Drupal Core 4.6.x Session Fixation (4.6.0 - 4.6.5) CWE-384 CWE-384 High Drupal Core 4.6.x SQL Injection (4.6.0 - 4.6.6) CVE-2006-2742 CWE-89 CWE-89 High Drupal Core 4.7.x Arbitrary Code Execution (4.7.0 - 4.7.0) CVE-2006-2743 CWE-95 CWE-95 High Drupal Core 4.7.x Arbitrary Code Execution (4.7.0 - 4.7.5) CVE-2007-0626 CWE-95 CWE-95 High Drupal Core 4.7.x Cross-Site Request Forgery (4.7.0 - 4.7.3) CVE-2006-5476 CWE-352 CWE-352 High Drupal Core 4.7.x Cross-Site Request Forgery (4.7.0 - 4.7.10) CVE-2008-0272 CWE-352 CWE-352 High Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.1) CVE-2006-2833 CWE-79 CWE-79 High Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.2) CVE-2006-4002 CWE-79 CWE-79 High Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.4) CVE-2007-0136 CWE-79 CWE-79 High Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.7) CVE-2007-5596 CWE-79 CWE-79 High Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.10) CVE-2008-0274 CWE-79 CWE-79 High Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.10) CVE-2008-0273 CWE-79 CWE-79 High Drupal Core 4.7.x Denial of Service (4.7.0 - 4.7.4) CVE-2007-0124 CWE-400 CWE-400 High Drupal Core 4.7.x Form Action Attribute Injection (4.7.0 - 4.7.3) CVE-2006-5477 CWE-20 CWE-20 High Drupal Core 4.7.x HTTP Response Splitting (4.7.0 - 4.7.7) CVE-2007-5595 CWE-113 CWE-113 High Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.3) CVE-2006-5475 CWE-79 CWE-79 High Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.6) CVE-2007-4064 CWE-79 CWE-79 High Drupal Core 4.7.x Multiple Vulnerabilities (4.7.0 - 4.7.1) CVE-2006-2831 CVE-2006-2832 CWE-79 CWE-95 CWE-79 CWE-95 High Drupal Core 4.7.x Security Bypass (4.7.0 - 4.7.7) CVE-2007-5597 CWE-702 CWE-702 High Drupal Core 4.7.x SQL Injection (4.7.0 - 4.7.0) CVE-2006-2742 CWE-89 CWE-89 High Drupal Core 4.7.x SQL Injection (4.7.0 - 4.7.8) CVE-2007-6299 CWE-89 CWE-89 High Drupal Core 5.x Arbitrary Code Execution (5.0 - 5.0) CVE-2007-0626 CWE-95 CWE-95 High Drupal Core 5.x Arbitrary Code Execution (5.0 - 5.2) CVE-2007-5593 CWE-95 CWE-95 High Drupal Core 5.x Cross-Site Request Forgery (5.0 - 5.2) CVE-2007-5594 CWE-352 CWE-352 High Drupal Core 5.x Cross-Site Request Forgery (5.0 - 5.5) CVE-2008-0272 CWE-352 CWE-352 High Drupal Core 5.x Cross-Site Scripting (5.0 - 5.2) CVE-2007-5596 CWE-79 CWE-79 High Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5) CVE-2008-0274 CWE-79 CWE-79 High Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5) CVE-2008-0273 CWE-79 CWE-79 High Drupal Core 5.x Cross-Site Scripting (5.0 - 5.16) CVE-2009-1575 CVE-2009-1576 CVE-2009-1844 CWE-79 CWE-79 High Drupal Core 5.x Cross-Site Scripting (5.0 - 5.17) CVE-2009-1844 CWE-79 CWE-79 High Drupal Core 5.x Cross-Site Scripting (5.0 - 5.20) CVE-2009-4369 CWE-79 CWE-79 High Drupal Core 5.x HTTP Response Splitting (5.0 - 5.2) CVE-2007-5595 CWE-113 CWE-113 High Drupal Core 5.x Information Disclosure (5.0 - 5.18) CVE-2009-2374 CWE-200 CWE-200 High Drupal Core 5.x Local File Inclusion (5.0 - 5.11) CVE-2008-6171 CWE-22 CWE-22 High Drupal Core 5.x Local File Inclusion (5.0 - 5.15) CWE-22 CWE-22 High Drupal Core 5.x Multiple Cross-Site Request Forgery Vulnerabilities (5.0 - 5.1) CVE-2007-4063 CWE-352 CWE-352 High Drupal Core 5.x Multiple Cross-Site Scripting Vulnerabilities (5.0 - 5.1) CVE-2007-4064 CWE-79 CWE-79 High Drupal Core 5.x Multiple Security Bypass Vulnerabilities (5.0 - 5.10) CVE-2008-4790 CVE-2008-4791 CVE-2008-4792 CVE-2008-4793 CWE-264 CWE-264 High Drupal Core 5.x Multiple Security Bypass Vulnerabilities (5.0 - 5.22) CVE-2010-3092 CVE-2010-3093 CWE-264 CWE-264 High Drupal Core 5.x Multiple Vulnerabilities (5.0 - 5.7) CVE-2008-3219 CVE-2008-3220 CVE-2008-3222 CWE-352 CWE-384 CWE-352 CWE-384 High Drupal Core 5.x Multiple Vulnerabilities (5.0 - 5.9) CVE-2008-3740 CVE-2008-3741 CVE-2008-3742 CVE-2008-3744 CWE-79 CWE-352 CWE-434 CWE-79 CWE-352 CWE-434 High Drupal Core 5.x Multiple Vulnerabilities (5.0 - 5.12) CVE-2008-6532 CVE-2008-6533 CWE-79 CWE-352 CWE-79 CWE-352 High Drupal Core 5.x Multiple Vulnerabilities (5.0 - 5.21) CWE-79 CWE-264 CWE-601 CWE-79 CWE-264 CWE-601 High Drupal Core 5.x Security Bypass (5.0 - 5.2) CVE-2007-5597 CWE-702 CWE-702 High Drupal Core 5.x Session Fixation (5.0 - 5.8) CWE-384 CWE-384 High Drupal Core 5.x Session Fixation (5.0 - 5.19) CWE-384 CWE-384 High Drupal Core 5.x SQL Injection (5.0 - 5.3) CVE-2007-6299 CWE-89 CWE-89 High Drupal Core 5.x SQL Injection (5.0 - 5.14) CWE-89 CWE-89 High Drupal Core 6.x Cross-Site Scripting (6.0 - 6.10) CVE-2009-1575 CVE-2009-1576 CVE-2009-1844 CWE-79 CWE-79 High Drupal Core 6.x Cross-Site Scripting (6.0 - 6.11) CVE-2009-1844 CWE-79 CWE-79 High Drupal Core 6.x Denial of Service (6.0 - 6.32) CVE-2014-5265 CVE-2014-5266 CVE-2014-5267 CWE-400 CWE-400 High Drupal Core 6.x Information Disclosure (6.0 - 6.30) CVE-2014-2983 CWE-200 CWE-200 High Drupal Core 6.x Local File Inclusion (6.0 - 6.9) CWE-22 CWE-22 High Drupal Core 6.x Multiple Cross-Site Scripting Vulnerabilities (6.0 - 6.0) CVE-2008-1131 CVE-2008-1133 CWE-79 CWE-79 High Drupal Core 6.x Multiple Cross-Site Scripting Vulnerabilities (6.0 - 6.14) CVE-2009-4369 CVE-2009-4370 CWE-79 CWE-79 High Drupal Core 6.x Multiple Cross-Site Scripting Vulnerabilities (6.0 - 6.20) CWE-79 CWE-79 High Drupal Core 6.x Multiple Security Bypass Vulnerabilities (6.0 - 6.4) CVE-2008-4789 CVE-2008-4791 CVE-2008-4792 CWE-264 CWE-264 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.2) CVE-2008-3218 CVE-2008-3219 CVE-2008-3220 CVE-2008-3221 CVE-2008-3222 CVE-2008-3223 CWE-79 CWE-89 CWE-352 CWE-384 CWE-79 CWE-89 CWE-352 CWE-384 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.3) CVE-2008-3740 CVE-2008-3741 CVE-2008-3742 CVE-2008-3743 CVE-2008-3744 CVE-2008-3745 CWE-79 CWE-264 CWE-352 CWE-434 CWE-79 CWE-264 CWE-352 CWE-434 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.5) CVE-2008-6170 CVE-2008-6171 CWE-22 CWE-79 CWE-22 CWE-79 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.6) CVE-2008-6532 CVE-2008-6533 CWE-79 CWE-352 CWE-79 CWE-352 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.8) CWE-89 CWE-264 CWE-89 CWE-264 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.12) CVE-2009-2372 CVE-2009-2373 CVE-2009-2374 CWE-79 CWE-200 CWE-264 CWE-79 CWE-200 CWE-264 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.13) CWE-264 CWE-352 CWE-434 CWE-264 CWE-352 CWE-434 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.15) CWE-79 CWE-264 CWE-601 CWE-79 CWE-264 CWE-601 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.17) CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686 CWE-79 CWE-264 CWE-79 CWE-264 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.22) CVE-2012-0825 CVE-2012-0826 CWE-264 CWE-352 CWE-264 CWE-352 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.26) CVE-2012-5651 CVE-2012-5652 CVE-2012-5653 CWE-95 CWE-264 CWE-95 CWE-264 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.27) CVE-2013-0244 CVE-2013-0245 CWE-79 CWE-264 CWE-79 CWE-264 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.28) CVE-2013-6385 CVE-2013-6386 CWE-95 CWE-264 CWE-330 CWE-95 CWE-264 CWE-330 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.31) CVE-2014-5019 CVE-2014-5021 CWE-79 CWE-400 CWE-79 CWE-400 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.34) CVE-2015-2559 CVE-2015-2749 CVE-2015-2750 CWE-264 CWE-601 CWE-264 CWE-601 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.36) CVE-2015-6658 CVE-2015-6660 CVE-2015-6661 CWE-79 CWE-200 CWE-352 CWE-79 CWE-200 CWE-352 High Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.37) CVE-2016-3163 CVE-2016-3164 CVE-2016-3165 CVE-2016-3166 CVE-2016-3167 CVE-2016-3168 CVE-2016-3169 CVE-2016-3171 CWE-113 CWE-287 CWE-405 CWE-601 CWE-113 CWE-287 CWE-405 CWE-601 High Drupal Core 6.x Remote Code Execution (6.0 - 6.38) CVE-2018-7600 CWE-94 CWE-94 High Drupal Core 6.x Security Bypass (6.0 - 6.1) CWE-264 CWE-264 High Drupal Core 6.x Security Bypass (6.0 - 6.29) CVE-2014-1475 CWE-287 CWE-287 High Drupal Core 6.x Security Bypass (6.0 - 6.35) CVE-2015-3234 CWE-287 CWE-287 High Drupal Core 6.x Session Hijacking (6.0 - 6.33) CVE-2014-9015 CWE-384 CWE-384 High Drupal Core 7.x Arbitrary File Overwrite (7.0 - 7.77) CVE-2020-36193 CWE-73 CWE-73 High Drupal Core 7.x Cross-Site Request Forgery (7.0 - 7.12) CVE-2007-6752 CWE-352 CWE-352 High Drupal Core 7.x Cross-Site Request Forgery (7.0 - 7.71) CVE-2020-13663 CWE-352 CWE-352 High Drupal Core 7.x Cross-Site Scripting (7.0 - 7.64) CVE-2019-6341 CWE-79 CWE-79 High Drupal Core 7.x Cross-Site Scripting (7.0 - 7.65) CVE-2019-11358 CWE-79 CWE-79 High Drupal Core 7.x Cross-Site Scripting (7.0 - 7.69) CVE-2020-11022 CVE-2020-11023 CWE-79 CWE-79 High Drupal Core 7.x Cross-Site Scripting (7.0 - 7.72) CVE-2020-13666 CWE-79 CWE-79 High Drupal Core 7.x Cross-Site Scripting (7.0 - 7.79) CVE-2020-13672 CWE-79 CWE-79 High Drupal Core 7.x Denial of Service (7.0 - 7.19) CVE-2013-0316 CWE-400 CWE-400 High Drupal Core 7.x Denial of Service (7.0 - 7.30) CVE-2014-5265 CVE-2014-5266 CVE-2014-5267 CWE-400 CWE-400 High Drupal Core 7.x Directory Traversal (7.0 - 7.66) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 7.x Directory Traversal (7.0 - 7.81) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 7.x Information Disclosure (7.0 - 7.14) CVE-2012-2922 CWE-200 CWE-200 High Drupal Core 7.x Information Disclosure (7.0 - 7.26) CVE-2014-2983 CWE-200 CWE-200 High Drupal Core 7.x Multiple Cross-Site Scripting Vulnerabilities (7.0 - 7.85) CVE-2010-5312 CVE-2016-7103 CVE-2021-41182 CVE-2021-41183 CVE-2021-41184 CWE-79 CWE-79 High Drupal Core 7.x Multiple Security Bypass Vulnerabilities (7.0 - 7.25) CVE-2014-1475 CVE-2014-1476 CWE-264 CWE-287 CWE-264 CWE-287 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.0) CWE-79 CWE-264 CWE-79 CWE-264 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.10) CVE-2012-0825 CVE-2012-0826 CVE-2012-0827 CWE-264 CWE-352 CWE-264 CWE-352 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.12) CVE-2012-1588 CVE-2012-1589 CVE-2012-1590 CVE-2012-1591 CVE-2012-2153 CWE-264 CWE-400 CWE-601 CWE-264 CWE-400 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.15) CVE-2012-4553 CVE-2012-4554 CWE-95 CWE-538 CWE-95 CWE-538 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.17) CVE-2012-5651 CVE-2012-5653 CWE-95 CWE-264 CWE-95 CWE-264 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.18) CVE-2013-0244 CVE-2013-0245 CVE-2013-0246 CWE-79 CWE-264 CWE-79 CWE-264 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.23) CVE-2013-6385 CVE-2013-6386 CVE-2013-6387 CVE-2013-6388 CVE-2013-6389 CWE-79 CWE-95 CWE-264 CWE-330 CWE-601 CWE-79 CWE-95 CWE-264 CWE-330 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.28) CVE-2014-5019 CVE-2014-5020 CVE-2014-5021 CVE-2014-5022 CWE-79 CWE-264 CWE-400 CWE-79 CWE-264 CWE-400 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.33) CVE-2014-9015 CVE-2014-9016 CWE-384 CWE-400 CWE-384 CWE-400 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.34) CVE-2015-2559 CVE-2015-2749 CVE-2015-2750 CWE-264 CWE-601 CWE-264 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.37) CVE-2015-3231 CVE-2015-3232 CVE-2015-3233 CVE-2015-3234 CWE-200 CWE-287 CWE-601 CWE-200 CWE-287 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.38) CVE-2015-6658 CVE-2015-6659 CVE-2015-6660 CVE-2015-6661 CVE-2015-6665 CWE-79 CWE-89 CWE-200 CWE-352 CWE-79 CWE-89 CWE-200 CWE-352 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.42) CVE-2016-3162 CVE-2016-3163 CVE-2016-3164 CVE-2016-3168 CVE-2016-3169 CVE-2016-3170 CWE-200 CWE-287 CWE-400 CWE-405 CWE-601 CWE-200 CWE-287 CWE-400 CWE-405 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.51) CVE-2016-9449 CVE-2016-9451 CWE-200 CWE-601 CWE-200 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.56) CVE-2017-6927 CVE-2017-6928 CVE-2017-6929 CVE-2017-6932 CWE-79 CWE-264 CWE-610 CWE-79 CWE-264 CWE-610 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.59) CWE-94 CWE-601 CWE-94 CWE-601 High Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.61) CVE-2018-1000888 CVE-2019-6339 CWE-94 CWE-915 CWE-94 CWE-915 High Drupal Core 7.x Open Redirect (7.0 - 7.40) CVE-2015-7943 CWE-601 CWE-601 High Drupal Core 7.x Open Redirect (7.0 - 7.69) CVE-2020-13662 CWE-601 CWE-601 High Drupal Core 7.x Remote Code Execution (7.0 - 7.57) CVE-2018-7600 CWE-94 CWE-94 High Drupal Core 7.x Remote Code Execution (7.0 - 7.58) CVE-2018-7602 CWE-94 CWE-94 High Drupal Core 7.x Remote Code Execution (7.0 - 7.73) CVE-2020-13671 CWE-434 CWE-434 High Drupal Core 7.x Remote Code Execution (7.0 - 7.74) CVE-2020-28948 CVE-2020-28949 CWE-434 CWE-434 High Drupal Core 7.x Security Bypass (7.0 - 7.2) CVE-2011-2687 CWE-264 CWE-264 High Drupal Core 7.x Security Bypass (7.0 - 7.4) CVE-2011-2726 CWE-264 CWE-264 High Drupal Core 7.x Security Bypass (7.0 - 7.43) CVE-2016-6211 CWE-264 CWE-264 High Drupal Core 7.x Security Bypass (7.0 - 7.55) CVE-2017-6922 CWE-264 CWE-264 High Drupal Core 7.x Security Bypass (7.0 - 7.68) CWE-264 CWE-264 High Drupal Core 7.x Security Bypass (7.0 - 7.87) CVE-2022-25271 CWE-20 CWE-20 High Drupal Core 7.x Security Bypass (7.0 - 7.90) CVE-2022-25275 CWE-264 CWE-264 High Drupal Core 7.x SQL Injection (7.0 - 7.31) CVE-2014-3704 CWE-89 CWE-89 High Drupal Core 8.0.x Multiple Vulnerabilities (8.0.0 - 8.0.3) CVE-2016-3162 CVE-2016-3164 CVE-2016-3170 CWE-200 CWE-287 CWE-400 CWE-601 CWE-200 CWE-287 CWE-400 CWE-601 High Drupal Core 8.3.0 Security Bypass (8.3.0 - 8.3.0) CVE-2017-6919 CWE-264 CWE-264 High Drupal Core 8.4.x Remote Code Execution (8.4.0 - 8.4.5) CVE-2018-7600 CWE-94 CWE-94 High Drupal Core 8.4.x Remote Code Execution (8.4.0 - 8.4.7) CVE-2018-7602 CWE-94 CWE-94 High Drupal Core 8.5.0 Remote Code Execution (8.5.0 - 8.5.0) CVE-2018-7600 CWE-94 CWE-94 High Drupal Core 8.5.x Cross-Site Scripting (8.5.0 - 8.5.1) CWE-79 CWE-79 High Drupal Core 8.5.x Cross-Site Scripting (8.5.0 - 8.5.13) CVE-2019-6341 CWE-79 CWE-79 High Drupal Core 8.5.x Cross-Site Scripting (8.5.0 - 8.5.14) CVE-2019-11358 CWE-79 CWE-79 High Drupal Core 8.5.x Multiple Vulnerabilities (8.5.0 - 8.5.7) CWE-94 CWE-264 CWE-601 CWE-94 CWE-264 CWE-601 High Drupal Core 8.5.x Multiple Vulnerabilities (8.5.0 - 8.5.8) CVE-2018-1000888 CVE-2019-6339 CWE-94 CWE-915 CWE-94 CWE-915 High Drupal Core 8.5.x Multiple Vulnerabilities (8.5.0 - 8.5.14) CVE-2019-10909 CVE-2019-10910 CVE-2019-10911 CWE-79 CWE-94 CWE-264 CWE-79 CWE-94 CWE-264 High Drupal Core 8.5.x Remote Code Execution (8.5.0 - 8.5.2) CVE-2018-7602 CWE-94 CWE-94 High Drupal Core 8.5.x Remote Code Execution (8.5.0 - 8.5.10) CVE-2019-6340 CWE-94 CWE-94 High Drupal Core 8.6.x Cross-Site Scripting (8.6.0 - 8.6.12) CVE-2019-6341 CWE-79 CWE-79 High Drupal Core 8.6.x Cross-Site Scripting (8.6.0 - 8.6.14) CVE-2019-11358 CWE-79 CWE-79 High Drupal Core 8.6.x Directory Traversal (8.6.0 - 8.6.15) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 8.6.x Multiple Vulnerabilities (8.6.0 - 8.6.1) CWE-94 CWE-264 CWE-601 CWE-94 CWE-264 CWE-601 High Drupal Core 8.6.x Multiple Vulnerabilities (8.6.0 - 8.6.5) CVE-2018-1000888 CVE-2019-6339 CWE-94 CWE-915 CWE-94 CWE-915 High Drupal Core 8.6.x Multiple Vulnerabilities (8.6.0 - 8.6.14) CVE-2019-10909 CVE-2019-10910 CVE-2019-10911 CWE-79 CWE-94 CWE-264 CWE-79 CWE-94 CWE-264 High Drupal Core 8.6.x Remote Code Execution (8.6.0 - 8.6.9) CVE-2019-6340 CWE-94 CWE-94 High Drupal Core 8.7.0 Directory Traversal (8.7.0 - 8.7.0) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 8.7.4 Security Bypass (8.7.4 - 8.7.4) CVE-2019-6342 CWE-264 CWE-264 High Drupal Core 8.7.x Cross-Site Scripting (8.7.0 - 8.7.11) CVE-2020-9281 CWE-79 CWE-79 High Drupal Core 8.7.x Cross-Site Scripting (8.7.0 - 8.7.13) CVE-2020-11022 CVE-2020-11023 CWE-79 CWE-79 High Drupal Core 8.7.x Denial of Service (8.7.0 - 8.7.10) CWE-400 CWE-400 High Drupal Core 8.7.x Security Bypass (8.7.0 - 8.7.10) CWE-264 CWE-264 High Drupal Core 8.7.x Security Bypass (8.7.0 - 8.7.10) CWE-264 CWE-264 High Drupal Core 8.7.x Security Bypass (8.7.0 - 8.7.10) CWE-264 CWE-264 High Drupal Core 8.8.0 Denial of Service (8.8.0 - 8.8.0) CWE-400 CWE-400 High Drupal Core 8.8.0 Security Bypass (8.8.0 - 8.8.0) CWE-264 CWE-264 High Drupal Core 8.8.0 Security Bypass (8.8.0 - 8.8.0) CWE-264 CWE-264 High Drupal Core 8.8.0 Security Bypass (8.8.0 - 8.8.0) CWE-264 CWE-264 High Drupal Core 8.8.x Arbitrary File Overwrite (8.8.0 - 8.8.12) CVE-2020-36193 CWE-73 CWE-73 High Drupal Core 8.8.x Cross-Site Request Forgery (8.8.0 - 8.8.7) CVE-2020-13663 CWE-352 CWE-352 High Drupal Core 8.8.x Cross-Site Scripting (8.8.0 - 8.8.3) CVE-2020-9281 CWE-79 CWE-79 High Drupal Core 8.8.x Cross-Site Scripting (8.8.0 - 8.8.5) CVE-2020-11022 CVE-2020-11023 CWE-79 CWE-79 High Drupal Core 8.8.x Information Disclosure (8.8.0 - 8.8.9) CVE-2020-13670 CWE-200 CWE-200 High Drupal Core 8.8.x Multiple Cross-Site Scripting Vulnerabilities (8.8.0 - 8.8.9) CVE-2020-13666 CVE-2020-13668 CVE-2020-13669 CVE-2020-13688 CWE-79 CWE-79 High Drupal Core 8.8.x Remote Code Execution (8.8.0 - 8.8.7) CVE-2020-13664 CWE-94 CWE-94 High Drupal Core 8.8.x Remote Code Execution (8.8.0 - 8.8.10) CVE-2020-13671 CWE-434 CWE-434 High Drupal Core 8.8.x Remote Code Execution (8.8.0 - 8.8.11) CVE-2020-28948 CVE-2020-28949 CWE-434 CWE-434 High Drupal Core 8.8.x Security Bypass (8.8.0 - 8.8.7) CVE-2020-13665 CWE-264 CWE-264 High Drupal Core 8.8.x Security Bypass (8.8.0 - 8.8.9) CVE-2020-13667 CWE-264 CWE-264 High Drupal Core 8.9.0 Cross-Site Request Forgery (8.9.0 - 8.9.0) CVE-2020-13663 CWE-352 CWE-352 High Drupal Core 8.9.0 Remote Code Execution (8.9.0 - 8.9.0) CVE-2020-13664 CWE-94 CWE-94 High Drupal Core 8.9.0 Security Bypass (8.9.0 - 8.9.0) CVE-2020-13665 CWE-264 CWE-264 High Drupal Core 8.9.x Arbitrary File Overwrite (8.9.0 - 8.9.12) CVE-2020-36193 CWE-73 CWE-73 High Drupal Core 8.9.x Cross-Site Request Forgery (8.9.0 - 8.9.18) CVE-2020-13673 CVE-2020-13674 CWE-352 CWE-352 High Drupal Core 8.9.x Cross-Site Scripting (8.9.0 - 8.9.13) CVE-2020-13672 CWE-79 CWE-79 High Drupal Core 8.9.x Cross-Site Scripting (8.9.0 - 8.9.15) CVE-2021-33829 CWE-79 CWE-79 High Drupal Core 8.9.x Cross-Site Scripting (8.9.0 - 8.9.17) CWE-79 CWE-79 High Drupal Core 8.9.x Cross-Site Scripting (8.9.0 - 8.9.19) CWE-79 CWE-79 High Drupal Core 8.9.x Directory Traversal (8.9.0 - 8.9.16) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 8.9.x Information Disclosure (8.9.0 - 8.9.5) CVE-2020-13670 CWE-200 CWE-200 High Drupal Core 8.9.x Multiple Cross-Site Scripting Vulnerabilities (8.9.0 - 8.9.5) CVE-2020-13666 CVE-2020-13668 CVE-2020-13669 CVE-2020-13688 CWE-79 CWE-79 High Drupal Core 8.9.x Multiple Security Bypass Vulnerabilities (8.9.0 - 8.9.18) CVE-2020-13675 CVE-2020-13676 CVE-2020-13677 CWE-284 CWE-284 High Drupal Core 8.9.x Remote Code Execution (8.9.0 - 8.9.8) CVE-2020-13671 CWE-434 CWE-434 High Drupal Core 8.9.x Remote Code Execution (8.9.0 - 8.9.9) CVE-2020-28948 CVE-2020-28949 CWE-434 CWE-434 High Drupal Core 8.9.x Security Bypass (8.9.0 - 8.9.5) CVE-2020-13667 CWE-264 CWE-264 High Drupal Core 8.x.x Arbitrary File Overwrite (8.0.0 - 8.7.14) CVE-2020-36193 CWE-73 CWE-73 High Drupal Core 8.x.x Cross-Site Request Forgery (8.0.0 - 8.7.14) CVE-2020-13663 CWE-352 CWE-352 High Drupal Core 8.x.x Cross-Site Request Forgery (8.0.0 - 8.8.12) CVE-2020-13673 CVE-2020-13674 CWE-352 CWE-352 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.4.6) CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.4.8) CVE-2019-11358 CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.6.18) CVE-2020-11022 CVE-2020-11023 CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.6.18) CVE-2020-9281 CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.8.12) CVE-2021-33829 CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.8.12) CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.8.12) CVE-2020-13672 CWE-79 CWE-79 High Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.8.12) CWE-79 CWE-79 High Drupal Core 8.x.x Denial of Service (8.0.0 - 8.6.18) CWE-400 CWE-400 High Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.5.15) CVE-2019-11831 CWE-22 CWE-22 High Drupal Core 8.x.x Directory Traversal (8.0.0 - 8.8.12) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 8.x.x Information Disclosure (8.0.0 - 8.7.14) CVE-2020-13670 CWE-200 CWE-200 High Drupal Core 8.x.x Multiple Cross-Site Scripting Vulnerabilities (8.0.0 - 8.7.14) CVE-2020-13666 CVE-2020-13668 CVE-2020-13669 CVE-2020-13688 CWE-79 CWE-79 High Drupal Core 8.x.x Multiple Security Bypass Vulnerabilities (8.0.0 - 8.8.12) CVE-2020-13675 CVE-2020-13676 CVE-2020-13677 CWE-284 CWE-284 High Drupal Core 8.x.x Multiple Vulnerabilities (8.0.0 - 8.4.8) CVE-2019-10909 CVE-2019-10910 CVE-2019-10911 CWE-79 CWE-94 CWE-264 CWE-79 CWE-94 CWE-264 High Drupal Core 8.x.x Remote Code Execution (8.0.0 - 8.3.8) CVE-2018-7600 CWE-94 CWE-94 High Drupal Core 8.x.x Remote Code Execution (8.0.0 - 8.4.8) CVE-2019-6340 CWE-94 CWE-94 High Drupal Core 8.x.x Remote Code Execution (8.0.0 - 8.7.14) CVE-2020-13671 CWE-434 CWE-434 High Drupal Core 8.x.x Remote Code Execution (8.0.0 - 8.7.14) CVE-2020-28948 CVE-2020-28949 CWE-434 CWE-434 High Drupal Core 8.x.x Remote Code Execution (8.0.0 - 8.7.14) CVE-2020-13664 CWE-94 CWE-94 High Drupal Core 8.x.x Security Bypass (8.0.0 - 8.6.18) CWE-264 CWE-264 High Drupal Core 8.x.x Security Bypass (8.0.0 - 8.6.18) CWE-264 CWE-264 High Drupal Core 8.x.x Security Bypass (8.0.0 - 8.6.18) CWE-264 CWE-264 High Drupal Core 8.x.x Security Bypass (8.0.0 - 8.7.14) CVE-2020-13667 CWE-264 CWE-264 High Drupal Core 8.x.x Security Bypass (8.0.0 - 8.7.14) CVE-2020-13665 CWE-264 CWE-264 High Drupal Core 8.x Multiple Security Bypass Vulnerabilities (8.0.0 - 8.3.6) CVE-2017-6923 CVE-2017-6924 CVE-2017-6925 CWE-264 CWE-264 High Drupal Core 8.x Multiple Vulnerabilities (8.0.0 - 8.1.9) CVE-2016-7570 CVE-2016-7571 CVE-2016-7572 CWE-79 CWE-200 CWE-264 CWE-79 CWE-200 CWE-264 High Drupal Core 8.x Multiple Vulnerabilities (8.0.0 - 8.2.2) CVE-2016-9449 CVE-2016-9450 CVE-2016-9452 CWE-200 CWE-400 CWE-200 CWE-400 High Drupal Core 8.x Multiple Vulnerabilities (8.0.0 - 8.2.6) CVE-2017-6377 CVE-2017-6379 CVE-2017-6381 CWE-94 CWE-264 CWE-352 CWE-94 CWE-264 CWE-352 High Drupal Core 8.x Multiple Vulnerabilities (8.0.0 - 8.3.3) CVE-2017-6920 CVE-2017-6921 CVE-2017-6922 CWE-94 CWE-264 CWE-94 CWE-264 High Drupal Core 8.x Multiple Vulnerabilities (8.0.0 - 8.4.4) CVE-2017-6926 CVE-2017-6927 CVE-2017-6930 CVE-2017-6931 CWE-79 CWE-264 CWE-79 CWE-264 High Drupal Core 8.x Security Bypass (8.0.0 - 8.1.2) CVE-2016-6212 CWE-264 CWE-264 High Drupal Core 8.x Security Bypass (8.0.0 - 8.1.6) CVE-2016-5385 CWE-284 CWE-284 High Drupal Core 8.x Security Bypass (8.0.0 - 8.2.7) CVE-2017-6919 CWE-264 CWE-264 High Drupal Core 8.x Security Bypass (8.0.0 - 8.5.5) CVE-2018-14773 CWE-749 CWE-749 High Drupal Core 9.0.0 Cross-Site Request Forgery (9.0.0 - 9.0.0) CVE-2020-13663 CWE-352 CWE-352 High Drupal Core 9.0.0 Remote Code Execution (9.0.0 - 9.0.0) CVE-2020-13664 CWE-94 CWE-94 High Drupal Core 9.0.0 Security Bypass (9.0.0 - 9.0.0) CVE-2020-13665 CWE-264 CWE-264 High Drupal Core 9.0.x Arbitrary File Overwrite (9.0.0 - 9.0.10) CVE-2020-36193 CWE-73 CWE-73 High Drupal Core 9.0.x Cross-Site Request Forgery (9.0.0 - 9.0.14) CVE-2020-13673 CVE-2020-13674 CWE-352 CWE-352 High Drupal Core 9.0.x Cross-Site Scripting (9.0.0 - 9.0.11) CVE-2020-13672 CWE-79 CWE-79 High Drupal Core 9.0.x Cross-Site Scripting (9.0.0 - 9.0.13) CVE-2021-33829 CWE-79 CWE-79 High Drupal Core 9.0.x Cross-Site Scripting (9.0.0 - 9.0.14) CWE-79 CWE-79 High Drupal Core 9.0.x Cross-Site Scripting (9.0.0 - 9.0.14) CWE-79 CWE-79 High Drupal Core 9.0.x Directory Traversal (9.0.0 - 9.0.14) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 9.0.x Information Disclosure (9.0.0 - 9.0.5) CVE-2020-13670 CWE-200 CWE-200 High Drupal Core 9.0.x Multiple Cross-Site Scripting Vulnerabilities (9.0.0 - 9.0.5) CVE-2020-13666 CVE-2020-13668 CVE-2020-13669 CVE-2020-13688 CWE-79 CWE-79 High Drupal Core 9.0.x Multiple Security Bypass Vulnerabilities (9.0.0 - 9.0.14) CVE-2020-13675 CVE-2020-13676 CVE-2020-13677 CWE-284 CWE-284 High Drupal Core 9.0.x Remote Code Execution (9.0.0 - 9.0.7) CVE-2020-13671 CWE-434 CWE-434 High Drupal Core 9.0.x Remote Code Execution (9.0.0 - 9.0.8) CVE-2020-28948 CVE-2020-28949 CWE-434 CWE-434 High Drupal Core 9.0.x Security Bypass (9.0.0 - 9.0.5) CVE-2020-13667 CWE-264 CWE-264 High Drupal Core 9.1.x Arbitrary File Overwrite (9.1.0 - 9.1.2) CVE-2020-36193 CWE-73 CWE-73 High Drupal Core 9.1.x Cross-Site Request Forgery (9.1.0 - 9.1.12) CVE-2020-13673 CVE-2020-13674 CWE-352 CWE-352 High Drupal Core 9.1.x Cross-Site Scripting (9.1.0 - 9.1.6) CVE-2020-13672 CWE-79 CWE-79 High Drupal Core 9.1.x Cross-Site Scripting (9.1.0 - 9.1.8) CVE-2021-33829 CWE-79 CWE-79 High Drupal Core 9.1.x Cross-Site Scripting (9.1.0 - 9.1.11) CWE-79 CWE-79 High Drupal Core 9.1.x Cross-Site Scripting (9.1.0 - 9.1.13) CWE-79 CWE-79 High Drupal Core 9.1.x Directory Traversal (9.1.0 - 9.1.10) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 9.1.x Multiple Security Bypass Vulnerabilities (9.1.0 - 9.1.12) CVE-2020-13675 CVE-2020-13676 CVE-2020-13677 CWE-284 CWE-284 High Drupal Core 9.2.x Cross-Site Request Forgery (9.2.0 - 9.2.5) CVE-2020-13673 CVE-2020-13674 CWE-352 CWE-352 High Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.3) CWE-79 CWE-79 High Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.8) CWE-79 CWE-79 High Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.10) CVE-2021-41184 CWE-79 CWE-79 High Drupal Core 9.2.x Directory Traversal (9.2.0 - 9.2.1) CVE-2021-32610 CWE-22 CWE-22 High Drupal Core 9.2.x Multiple Security Bypass Vulnerabilities (9.2.0 - 9.2.5) CVE-2020-13675 CVE-2020-13676 CVE-2020-13677 CWE-284 CWE-284 High Drupal Core 9.2.x Multiple Vulnerabilities (9.2.0 - 9.2.14) CVE-2022-24728 CVE-2022-24729 CWE-79 CWE-400 CWE-79 CWE-400 High Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.12) CVE-2022-25271 CWE-20 CWE-20 High Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.12) CVE-2022-25270 CWE-264 CWE-264 High Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.15) CVE-2022-24775 CWE-20 CWE-20 High Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.17) CVE-2022-25273 CWE-20 CWE-20 High Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.19) CVE-2022-29248 CWE-264 CWE-264 High Drupal Core 9.2.x Security Bypass (9.2.0 - 9.2.20) CVE-2022-31042 CVE-2022-31043 CWE-284 CWE-284 High Drupal Core 9.3.x Cross-Site Scripting (9.3.0 - 9.3.2) CVE-2021-41184 CWE-79 CWE-79 High Drupal Core 9.3.x Cross-Site Scripting (9.3.0 - 9.3.18) CVE-2022-25276 CWE-79 CWE-79 High Drupal Core 9.3.x Multiple Vulnerabilities (9.3.0 - 9.3.7) CVE-2022-24728 CVE-2022-24729 CWE-79 CWE-400 CWE-79 CWE-400 High Drupal Core 9.3.x Remote Code Execution (9.3.0 - 9.3.18) CVE-2022-25277 CWE-434 CWE-434 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.5) CVE-2022-25271 CWE-20 CWE-20 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.5) CVE-2022-25270 CWE-264 CWE-264 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.8) CVE-2022-24775 CWE-20 CWE-20 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.11) CVE-2022-25274 CWE-264 CWE-264 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.11) CVE-2022-25273 CWE-20 CWE-20 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.13) CVE-2022-29248 CWE-264 CWE-264 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.15) CVE-2022-31042 CVE-2022-31043 CWE-284 CWE-284 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.18) CVE-2022-25275 CWE-264 CWE-264 High Drupal Core 9.3.x Security Bypass (9.3.0 - 9.3.18) CVE-2022-25278 CWE-264 CWE-264 High Drupal Core 9.4.x Cross-Site Scripting (9.4.0 - 9.4.2) CVE-2022-25276 CWE-79 CWE-79 High Drupal Core 9.4.x Remote Code Execution (9.4.0 - 9.4.2) CVE-2022-25277 CWE-434 CWE-434 High Drupal Core 9.4.x Security Bypass (9.4.0 - 9.4.2) CVE-2022-25275 CWE-264 CWE-264 High Drupal Core 9.4.x Security Bypass (9.4.0 - 9.4.2) CVE-2022-25278 CWE-264 CWE-264 High Drupal Core Cross-Site Scripting (8.0.0 - 9.1.15) CVE-2021-41184 CWE-79 CWE-79 High Drupal Core Cross-Site Scripting (8.0.0 - 9.2.21) CVE-2022-25276 CWE-79 CWE-79 High Drupal Core Multiple Vulnerabilities (8.0.0 - 9.1.15) CVE-2022-24728 CVE-2022-24729 CWE-79 CWE-400 CWE-79 CWE-400 High Drupal Core Remote Code Execution (8.0.0 - 9.2.21) CVE-2022-25277 CWE-434 CWE-434 High Drupal Core Security Bypass (8.0.0 - 9.1.15) CVE-2022-25273 CWE-20 CWE-20 High Drupal Core Security Bypass (8.0.0 - 9.1.15) CVE-2022-25271 CWE-20 CWE-20 High Drupal Core Security Bypass (8.0.0 - 9.1.15) CVE-2022-24775 CWE-20 CWE-20 High Drupal Core Security Bypass (8.0.0 - 9.1.15) CVE-2022-29248 CWE-264 CWE-264 High Drupal Core Security Bypass (8.0.0 - 9.1.15) CVE-2022-25270 CWE-264 CWE-264 High Drupal Core Security Bypass (8.0.0 - 9.1.15) CVE-2022-31042 CVE-2022-31043 CWE-284 CWE-284 High Drupal Core Security Bypass (8.0.0 - 9.2.21) CVE-2022-25278 CWE-264 CWE-264 High Drupal Core Security Bypass (8.0.0 - 9.2.21) CVE-2022-25275 CWE-264 CWE-264 High Horde remote code execution CVE-2014-1691 CWE-94 CWE-94 High Jetpack 2.9.3: Critical Security Update CVE-2014-0173 CWE-287 CWE-287 High Joomla! Core 1.0 Remote File Inclusion (1.0.0 - 1.0.0) CVE-2006-2960 CWE-94 CWE-94 High Joomla! Core 1.0.5 Security Bypass (1.0.5 - 1.0.5) CVE-2006-0114 CWE-264 CWE-264 High Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.11) CVE-2006-6832 CWE-79 CWE-79 High Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.15) CWE-79 CWE-79 High Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.15) CVE-2011-0005 CWE-79 CWE-79 High Joomla! Core 1.0.x Multiple Cross-Site Scripting Vulnerabilities (1.0.0 - 1.0.10) CVE-2006-4474 CWE-79 CWE-79 High Joomla! Core 1.0.x Multiple Cross-Site Scripting Vulnerabilities (1.0.0 - 1.0.12) CVE-2007-4189 CVE-2007-4190 CVE-2007-5577 CWE-79 CWE-79 High Joomla! Core 1.0.x Multiple Unspecified Vulnerabilities (1.0.0 - 1.0.5) CVE-2006-0303 High Joomla! Core 1.0.x Multiple Unspecified Vulnerabilities (1.0.0 - 1.0.7) CVE-2006-1030 CVE-2006-1047 High Joomla! Core 1.0.x Multiple Unspecified Vulnerabilities (1.0.0 - 1.0.9) CVE-2006-7008 CVE-2006-7009 High Joomla! Core 1.0.x Multiple Unspecified Vulnerabilities (1.0.0 - 1.0.10) CVE-2006-4466 CVE-2006-4468 CVE-2006-4469 CVE-2006-4470 CVE-2006-4472 CVE-2006-4473 CVE-2006-4475 CVE-2006-4476 High Joomla! Core 1.0.x Multiple Unspecified Vulnerabilities (1.0.0 - 1.0.11) CVE-2006-6833 CVE-2006-6834 High Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.3) CVE-2005-3771 CVE-2005-3772 CVE-2005-4650 CWE-79 CWE-89 CWE-400 CWE-79 CWE-89 CWE-400 High Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.7) CVE-2006-1027 CVE-2006-1028 CVE-2006-1029 CVE-2006-1048 CVE-2006-1049 CWE-89 CWE-200 CWE-264 CWE-400 CWE-89 CWE-200 CWE-264 CWE-400 High Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.9) CVE-2006-3480 CVE-2006-3481 CVE-2006-7010 CWE-79 CWE-89 CWE-79 CWE-89 High Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.12) CVE-2007-4184 CVE-2007-4185 CWE-89 CWE-200 CWE-89 CWE-200 High Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.13) CVE-2007-5427 CWE-79 CWE-352 CWE-79 CWE-352 High Joomla! Core 1.0.x Remote File Inclusion (1.0.11 - 1.0.14) CVE-2008-5671 CWE-94 CWE-94 High Joomla! Core 1.0.x Security Bypass (1.0.0 - 1.0.10) CVE-2006-4471 CWE-264 CWE-264 High Joomla! Core 1.0.x Session Fixation (1.0.0 - 1.0.12) CVE-2007-4188 CWE-287 CWE-287 High Joomla! Core 1.0.x SQL Injection (1.0.0 - 1.0.11) CVE-2007-0374 CWE-89 CWE-89 High Joomla! Core 1.0.x Unspecified Vulnerability (1.0.0 - 1.0.3) CVE-2005-3773 High Joomla! Core 1.5.12 Arbitrary File Upload (1.5.12 - 1.5.12) CVE-2011-4906 CVE-2011-4908 CWE-434 CWE-434 High Joomla! Core 1.5.x Arbitrary File Upload (1.5.0 - 1.5.15) CVE-2010-1433 CWE-434 CWE-434 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.7) CVE-2008-6299 CWE-79 CWE-79 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.9) CVE-2009-1279 CWE-79 CWE-79 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10) CVE-2009-1940 CWE-79 CWE-79 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10) CVE-2009-1938 CWE-79 CWE-79 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10) CVE-2009-1939 CWE-79 CWE-79 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.11) CVE-2011-4909 CWE-79 CWE-79 High Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.11) CVE-2011-4910 CWE-79 CWE-79 High Joomla! Core 1.5.x Directory Traversal (1.5.0 - 1.5.8) CVE-2009-0113 CWE-22 CWE-22 High Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.11) CVE-2011-4911 CWE-200 CWE-200 High Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.12) CWE-200 CWE-200 High Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.14) CWE-200 CWE-200 High Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.15) CVE-2010-1432 CWE-200 CWE-200 High Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.23) CVE-2011-3629 CWE-200 CWE-200 High Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.25) CVE-2012-1599 CWE-264 CWE-264 High Joomla! Core 1.5.x Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 1.5.20) CVE-2010-3712 CWE-79 CWE-79 High Joomla! Core 1.5.x Multiple SQL Injection Vulnerabilities (1.5.0 - 1.5.21) CVE-2010-4166 CVE-2010-4696 CWE-89 CWE-89 High Joomla! Core 1.5.x Multiple Vulnerabilities (1.5.0 - 1.5.3) CVE-2008-3225 CVE-2008-3226 CVE-2008-3227 CVE-2008-3228 CWE-16 CWE-59 CWE-264 CWE-16 CWE-59 CWE-264 High Joomla! Core 1.5.x Multiple Vulnerabilities (1.5.0 - 1.5.9) CVE-2009-1279 CVE-2009-1280 CWE-79 CWE-352 CWE-79 CWE-352 High Joomla! Core 1.5.x Open Redirect (1.5.0 - 1.5.6) CVE-2008-4104 CWE-601 CWE-601 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.5) CVE-2008-3681 CWE-264 CWE-264 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.6) CVE-2008-4102 CWE-330 CWE-330 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.13) CWE-264 CWE-264 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.14) CWE-264 CWE-264 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.15) CVE-2010-1435 CWE-264 CWE-264 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.24) CVE-2011-4321 CWE-310 CWE-310 High Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.25) CVE-2012-1598 CWE-264 CWE-264 High Joomla! Core 1.5.x Session Fixation (1.5.0 - 1.5.15) CVE-2010-1434 CWE-384 CWE-384 High Joomla! Core 1.5.x Session Hijacking (1.5.0 - 1.5.8) CVE-2008-4122 CWE-310 CWE-310 High Joomla! Core 1.5.x Spam (1.5.0 - 1.5.6) CVE-2008-4103 CWE-20 CWE-20 High Joomla! Core 1.5.x Spam (1.5.0 - 1.5.22) CWE-20 CWE-20 High Joomla! Core 1.5.x Variable Injection (1.5.0 - 1.5.6) CVE-2008-4105 CWE-20 CWE-20 High Joomla! Core 1.6.0 Multiple Vulnerabilities (1.6.0 - 1.6.0) CVE-2010-3712 CWE-79 CWE-89 CWE-200 CWE-79 CWE-89 CWE-200 High Joomla! Core 1.6.0 Spam (1.6.0 - 1.6.0) CWE-20 CWE-20 High Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.3) CVE-2011-4332 CWE-79 CWE-79 High Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.5) CVE-2011-2710 CWE-79 CWE-79 High Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CVE-2012-0822 CWE-79 CWE-79 High Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CVE-2011-3595 CWE-79 CWE-79 High Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CVE-2012-0820 CWE-79 CWE-79 High Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CWE-79 CWE-79 High Joomla! Core 1.6.x Information Disclosure (1.6.0 - 1.6.3) CWE-200 CWE-200 High Joomla! Core 1.6.x Information Disclosure (1.6.0 - 1.6.6) CVE-2012-0819 CWE-200 CWE-200 High Joomla! Core 1.6.x Information Disclosure (1.6.0 - 1.6.6) CVE-2012-0821 CWE-200 CWE-200 High Joomla! Core 1.6.x Multiple Cross-Site Scripting Vulnerabilities (1.6.0 - 1.6.3) CVE-2011-2509 CWE-79 CWE-79 High Joomla! Core 1.6.x Security Bypass (1.6.0 - 1.6.3) CWE-264 CWE-264 High Joomla! Core 1.6.x Security Bypass (1.6.0 - 1.6.6) CWE-330 CWE-330 High Joomla! Core 1.6.x Security Bypass (1.6.0 - 1.6.6) CVE-2012-1563 CWE-264 CWE-264 High Joomla! Core 1.6.x Security Bypass (1.6.0 - 1.6.6) CVE-2012-1562 CWE-264 CWE-264 High Joomla! Core 1.7.0 Cross-Site Scripting (1.7.0 - 1.7.0) CVE-2011-3595 CWE-79 CWE-79 High Joomla! Core 1.7.0 Cross-Site Scripting (1.7.0 - 1.7.0) CWE-79 CWE-79 High Joomla! Core 1.7.0 Information Disclosure (1.7.0 - 1.7.0) CWE-200 CWE-200 High Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.2) CWE-79 CWE-79 High Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.3) CVE-2012-0822 CWE-79 CWE-79 High Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.3) CVE-2012-0820 CWE-79 CWE-79 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.1) CVE-2011-3629 CWE-200 CWE-200 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.1) CVE-2011-4937 CWE-200 CWE-200 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.3) CVE-2012-0821 CWE-200 CWE-200 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.3) CVE-2012-0819 CWE-200 CWE-200 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.4) CVE-2012-0835 CWE-200 CWE-200 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.4) CVE-2012-0836 CWE-200 CWE-200 High Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.4) CVE-2012-0837 CWE-200 CWE-200 High Joomla! Core 1.7.x Security Bypass (1.7.0 - 1.7.2) CWE-330 CWE-330 High Joomla! Core 1.7.x Security Bypass (1.7.0 - 1.7.5) CVE-2012-1562 CWE-264 CWE-264 High Joomla! Core 1.7.x Security Bypass (1.7.0 - 1.7.5) CVE-2012-1563 CWE-264 CWE-264 High Joomla! Core 1.7.x SQL Injection (1.7.0 - 1.7.4) CVE-2012-1116 CWE-89 CWE-89 High Joomla! Core 2.5.0 Information Disclosure (2.5.0 - 2.5.0) CVE-2012-0835 CWE-200 CWE-200 High Joomla! Core 2.5.0 Information Disclosure (2.5.0 - 2.5.0) CVE-2012-0837 CWE-200 CWE-200 High Joomla! Core 2.5.x Arbitrary File Upload (2.5.0 - 2.5.13) CVE-2013-5576 CWE-434 CWE-434 High Joomla! Core 2.5.x Clickjacking Vulnerability (2.5.0 - 2.5.7) CVE-2012-5827 CWE-693 CWE-693 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.1) CVE-2012-1117 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.3) CVE-2012-1612 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.6) CVE-2012-4531 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.6) CVE-2012-4532 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CVE-2013-3059 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CVE-2013-3058 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CVE-2013-3267 CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.14) CWE-79 CWE-79 High Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.18) CVE-2014-7982 CWE-79