The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Drupal Modules ~ not comprehensive

Drupal Permissions by Term: information disclosure
An attacker can bypass access restrictions to data of Drupal Permissions by Term, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2019-095, VIGILANCE-VUL-31138
Drupal Modal Page: privilege escalation
An attacker can bypass restrictions of Drupal Modal Page, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2019-094, VIGILANCE-VUL-31137
Drupal Taxonomy Access Fix: privilege escalation
An attacker can bypass restrictions of Drupal Taxonomy Access Fix, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2019-093, VIGILANCE-VUL-31136
Drupal Smart Trim: Cross Site Scripting via Text Summary Fields
An attacker can trigger a Cross Site Scripting via Text Summary Fields of Drupal Smart Trim, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2019-092, VIGILANCE-VUL-31135
Drupal Booking and Availability Management Tools: information disclosure via Bat Events
An attacker can bypass access restrictions to data via Bat Events of Drupal Booking and Availability Management Tools, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2019-074, VIGILANCE-VUL-30645
Drupal Maxlength: Cross Site Scripting via Filter
An attacker can trigger a Cross Site Scripting via Filter of Drupal Maxlength, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2019-073, VIGILANCE-VUL-30567
Drupal Localization Update: privilege escalation via Translation Directory
An attacker can bypass restrictions via Translation Directory of Drupal Localization Update, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2019-072, FEDORA-2019-3b1529362e, FEDORA-2019-c4177f74f5, VIGILANCE-VUL-30498
Drupal Simple AMP: information disclosure via Unpublished/Restricted Content
An attacker can bypass access restrictions to data via Unpublished/Restricted Content of Drupal Simple AMP, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2019-071, VIGILANCE-VUL-30497
Drupal Ubercart: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Ubercart, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2019-070, VIGILANCE-VUL-30496
Drupal Permissions by Term: information disclosure
An attacker can make profit of wrong default permissions in Drupal Permissions by Term, in order to get sensitive information...
DRUPAL-SA-CONTRIB-2019-068, VIGILANCE-VUL-30415
Our database contains other pages. You can request a free trial to read them.

Display information about Drupal Modules ~ not comprehensive: