Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

CMS

Drupal

Drupal is an open-source platform and content management system for building dynamic web sites offering a broad range of features and services including user administration publishing workflow discussion capabilities news aggregation metadata functionalities using controlled vocabularies and XML publishing for content sharing purposes.

Official Site:

https://www.drupal.org/

Severity Summary:

Critical: 53 High: 119 Medium: 478 Low: 33
Reference
Title
Severity
CVE-2009-2374
Drupal Credentials Management Errors Vulnerability
Medium
CVE-2008-1133
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-3222
Drupal Core 5.x Multiple Vulnerabilities
Medium
CVE-2014-9016
Drupal Vulnerability
Medium
CVE-2019-10909
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-0136
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-5594
Drupal Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2006-1227
Drupal Other Vulnerability
Medium
CVE-2002-1806
Drupal Other Vulnerability
Medium
CVE-2006-1228
Drupal Improper Authentication Vulnerability
Medium
CVE-2006-0070
Drupal Other Vulnerability
Medium
CVE-2005-3973
Drupal Other Vulnerability
Medium
CVE-2005-3974
Drupal Other Vulnerability
Medium
CVE-2005-3975
Drupal Other Vulnerability
Medium
CVE-2005-2106
Drupal Other Vulnerability
Medium
SA-2007-029
Drupal User Deletion Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2007-5593
Drupal Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2008-3219
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-3220
Drupal Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2008-3221
Drupal Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2008-3222
Drupal Session Fixation Vulnerability
Medium
CVE-2008-3218
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-1729
Drupal Vulnerability
Medium
CVE-2009-3479
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-3092
Drupal Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2021-41164
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-3168
Drupal 7PK - Security Features Vulnerability
Medium
CVE-2015-6658
Drupal Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-6660
Drupal Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2015-6661
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium