Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

CMS

Drupal

Drupal is an open-source platform and content management system for building dynamic web sites offering a broad range of features and services including user administration publishing workflow discussion capabilities news aggregation metadata functionalities using controlled vocabularies and XML publishing for content sharing purposes.

Official Site:

https://www.drupal.org/

Severity Summary:

Critical: 53 High: 119 Medium: 478 Low: 33
Reference
Title
Severity
CVE-2020-13675
Drupal Core 9.1.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13675
Drupal Core 8.x.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13676
Drupal Core 9.1.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13677
Drupal Core 9.1.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13675
Drupal Core 9.0.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13676
Drupal Core 9.0.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13677
Drupal Core 9.0.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13675
Drupal Core 8.9.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13676
Drupal Core 8.9.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13677
Drupal Core 8.9.x Multiple Security Bypass Vulnerabilities
Critical
CVE-2020-13664
Drupal Core 9.0.0 Remote Code Execution
Critical
CVE-2008-6171
Drupal Configuration Vulnerability
Critical
CVE-2017-6920
Drupal Data Processing Errors Vulnerability
Critical
CVE-2024-55638
Drupal Deserialization of Untrusted Data Vulnerability
Critical
CVE-2020-13675
Drupal Unrestricted Upload of File with Dangerous Type Vulnerability
Critical
CVE-2024-55637
Drupal Deserialization of Untrusted Data Vulnerability
Critical
CVE-2019-10910
Drupal Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2019-11831
Drupal Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Critical
CVE-2024-55636
Drupal Deserialization of Untrusted Data Vulnerability
Critical
CVE-2009-3352
Drupal Vulnerability
Critical
CVE-2017-6925
Drupal Vulnerability
Critical
CVE-2020-13665
Drupal Access Bypass Vulnerability
Critical
CVE-2019-6339
Drupal Improper Input Validation Vulnerability
Critical
CVE-2005-1921
Drupal Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2023-5256
Drupal Vulnerability
High
CVE-2016-5385
Drupal Core 8.x Security Bypass
High
CVE-2022-24729
Drupal Inefficient Regular Expression Complexity Vulnerability
High
CVE-2020-13677
Drupal Improper Access Control Vulnerability
High
CVE-2022-25271
Drupal Improper Input Validation Vulnerability
High
CVE-2014-3704
Drupal Core 7.x SQL Injection
High