Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4066) CVE-2009-4066 CWE-352 CWE-352 Medium Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0826) CVE-2012-0826 CWE-352 CWE-352 Medium Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-6660) CVE-2015-6660 CWE-352 CWE-352 Medium Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-13674) CVE-2020-13674 CWE-352 CWE-352 Medium Drupal Cryptographic Issues Vulnerability (CVE-2013-6386) CVE-2013-6386 Medium Drupal CVE-2007-0626 Vulnerability (CVE-2007-0626) CVE-2007-0626 Medium Drupal CVE-2008-1729 Vulnerability (CVE-2008-1729) CVE-2008-1729 Medium Drupal CVE-2009-1576 Vulnerability (CVE-2009-1576) CVE-2009-1576 Medium Drupal CVE-2014-9016 Vulnerability (CVE-2014-9016) CVE-2014-9016 Medium Drupal CVE-2018-14773 Vulnerability (CVE-2018-14773) CVE-2018-14773 Medium Drupal CVE-2022-25278 Vulnerability (CVE-2022-25278) CVE-2022-25278 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3730) CVE-2011-3730 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-0825) CVE-2012-0825 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-2922) CVE-2012-2922 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5652) CVE-2012-5652 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-2983) CVE-2014-2983 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3231) CVE-2015-3231 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-6661) CVE-2015-6661 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3170) CVE-2016-3170 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6212) CVE-2016-6212 CWE-200 CWE-200 Medium Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9449) CVE-2016-9449 CWE-200 CWE-200 Medium Drupal Files or Directories Accessible to External Parties Vulnerability (CVE-2017-6922) CVE-2017-6922 CWE-552 CWE-552 Medium Drupal Improper Authentication Vulnerability (CVE-2006-1228) CVE-2006-1228 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2010-3091) CVE-2010-3091 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2010-3685) CVE-2010-3685 CWE-287 CWE-287 Medium Drupal Improper Authentication Vulnerability (CVE-2010-3686) CVE-2010-3686 CWE-287 CWE-287 Medium Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5593) CVE-2007-5593 CWE-94 CWE-94 Medium Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2009-2372) CVE-2009-2372 CWE-94 CWE-94 Medium Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-6385) CVE-2013-6385 CWE-94 CWE-94 Medium Drupal Improper Input Validation Vulnerability (CVE-2010-2473) CVE-2010-2473 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2012-1589) CVE-2012-1589 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2012-5653) CVE-2012-5653 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2013-6389) CVE-2013-6389 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2014-5019) CVE-2014-5019 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2015-3234) CVE-2015-3234 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2016-9452) CVE-2016-9452 CWE-20 CWE-20 Medium Drupal Improper Input Validation Vulnerability (CVE-2017-6921) CVE-2017-6921 CWE-20 CWE-20 Medium Drupal Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') Vulnerability (CVE-2019-11358) CVE-2019-11358 CWE-1321 CWE-1321 Medium Drupal Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2007-5595) CVE-2007-5595 CWE-113 CWE-113 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-0136) CVE-2007-0136 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-4064) CVE-2007-4064 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5596) CVE-2007-5596 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0273) CVE-2008-0273 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0276) CVE-2008-0276 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0462) CVE-2008-0462 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1133) CVE-2008-1133 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3218) CVE-2008-3218 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3219) CVE-2008-3219 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3740) CVE-2008-3740 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6533) CVE-2008-6533 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1047) CVE-2009-1047 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1575) CVE-2009-1575 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2373) CVE-2009-2373 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3479) CVE-2009-3479 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2250) CVE-2010-2250 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-2472) CVE-2010-2472 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-5312) CVE-2010-5312 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2714) CVE-2011-2714 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2339) CVE-2012-2339 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-6388) CVE-2013-6388 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1607) CVE-2014-1607 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5022) CVE-2014-5022 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6658) CVE-2015-6658 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-6665) CVE-2015-6665 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7571) CVE-2016-7571 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6927) CVE-2017-6927 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6929) CVE-2017-6929 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-9861) CVE-2018-9861 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-6341) CVE-2019-6341 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-10909) CVE-2019-10909 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-11876) CVE-2019-11876 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-9281) CVE-2020-9281 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11022) CVE-2020-11022 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-11023) CVE-2020-11023 CWE-707 CWE-707 Medium Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13666) CVE-2020-13666 CWE-707 CWE-707 Medium 1...14151617...99 15 / 99
