Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Drupal Improper Access Control Vulnerability (CVE-2020-13677) CVE-2020-13677 CWE-284 CWE-284 High Drupal Improper Authentication Vulnerability (CVE-2006-1228) CVE-2006-1228 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2010-3091) CVE-2010-3091 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2010-3685) CVE-2010-3685 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2010-3686) CVE-2010-3686 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2019-10911) CVE-2019-10911 CWE-287 CWE-287 High Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2005-1921) CVE-2005-1921 CWE-94 CWE-94 High Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5593) CVE-2007-5593 CWE-94 CWE-94 Medium Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2009-2372) CVE-2009-2372 CWE-94 CWE-94 Medium Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-6385) CVE-2013-6385 CWE-94 CWE-94 Medium Drupal Improper Input Validation Vulnerability (CVE-2007-6299) CVE-2007-6299 CWE-20 CWE-20 High Drupal Improper Input Validation Vulnerability (CVE-2010-2473) CVE-2010-2473 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2012-1589) CVE-2012-1589 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2012-5653) CVE-2012-5653 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2013-6389) CVE-2013-6389 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2014-5019) CVE-2014-5019 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2015-3234) CVE-2015-3234 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2016-9452) CVE-2016-9452 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2017-6921) CVE-2017-6921 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2018-7600) CVE-2018-7600 CWE-20 CWE-20 Critical Drupal Improper Input Validation Vulnerability (CVE-2019-6339) CVE-2019-6339 CWE-20 CWE-20 Critical Drupal Improper Input Validation Vulnerability (CVE-2019-6342) CVE-2019-6342 CWE-20 CWE-20 Critical Drupal Improper Input Validation Vulnerability (CVE-2022-24775) CVE-2022-24775 CWE-20 CWE-20 High Drupal Improper Input Validation Vulnerability (CVE-2022-25271) CVE-2022-25271 CWE-20 CWE-20 High Drupal Improper Input Validation Vulnerability (CVE-2022-25273) CVE-2022-25273 CWE-20 CWE-20 High Drupal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-11831) CVE-2019-11831 CWE-22 CWE-22 Critical Drupal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2020-36193) CVE-2020-36193 CWE-22 CWE-22 High Drupal Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-39261) CVE-2022-39261 CWE-22 CWE-22 High Drupal Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358) CVE-2019-11358 CWE-1321 CWE-1321 Medium Drupal Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2007-5595) CVE-2007-5595 CWE-113 CWE-113 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-0136) CVE-2007-0136 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-4064) CVE-2007-4064 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5596) CVE-2007-5596 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5621) CVE-2007-5621 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0273) CVE-2008-0273 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0274) CVE-2008-0274 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0276) CVE-2008-0276 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0462) CVE-2008-0462 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1131) CVE-2008-1131 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1133) CVE-2008-1133 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3218) CVE-2008-3218 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3219) CVE-2008-3219 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3740) CVE-2008-3740 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3741) CVE-2008-3741 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6170) CVE-2008-6170 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6533) CVE-2008-6533 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1047) CVE-2009-1047 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1575) CVE-2009-1575 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1844) CVE-2009-1844 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2373) CVE-2009-2373 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3156) CVE-2009-3156 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3479) CVE-2009-3479 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4369) CVE-2009-4369 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4370) CVE-2009-4370 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4371) CVE-2009-4371 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2250) CVE-2010-2250 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2472) CVE-2010-2472 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-3094) CVE-2010-3094 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-5312) CVE-2010-5312 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2714) CVE-2011-2714 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2339) CVE-2012-2339 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0244) CVE-2013-0244 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6387) CVE-2013-6387 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6388) CVE-2013-6388 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1607) CVE-2014-1607 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5021) CVE-2014-5021 CWE-707 CWE-707 Low Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5022) CVE-2014-5022 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6658) CVE-2015-6658 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6665) CVE-2015-6665 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7571) CVE-2016-7571 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6927) CVE-2017-6927 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6929) CVE-2017-6929 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-9861) CVE-2018-9861 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6341) CVE-2019-6341 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10909) CVE-2019-10909 CWE-707 CWE-707 Medium 1...30313233...293 31 / 293
