The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Drupal Modules ~ not comprehensive

Drupal Group: information disclosure
An attacker can bypass access restrictions to data of Drupal Group, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-032, DRUPAL-SA-CONTRIB-2020-033, VIGILANCE-VUL-33027
Drupal Hostmaster Aegir: code execution
An attacker can use a vulnerability of Drupal Hostmaster Aegir, in order to run code...
DRUPAL-SA-CONTRIB-2020-031, VIGILANCE-VUL-32962
Drupal Modal Form: information disclosure
An attacker can bypass access restrictions to data of Drupal Modal Form, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-029, VIGILANCE-VUL-32902
Drupal Apigee Edge: information disclosure via Add Team Member
An attacker can bypass access restrictions to data via Add Team Member of Drupal Apigee Edge, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-028, VIGILANCE-VUL-32901
Drupal Easy Breadcrumb: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Easy Breadcrumb, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2020-027, VIGILANCE-VUL-32900
Drupal Renderkit: information disclosure via Ignored Access Property
An attacker can bypass access restrictions to data via Ignored Access Property of Drupal Renderkit, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-026, VIGILANCE-VUL-32693
Drupal Internationalization: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Internationalization, in order to run JavaScript code in the context of the web site...
6240304, DRUPAL-SA-CONTRIB-2020-025, VIGILANCE-VUL-32571
Drupal YubiKey: privilege escalation via Brute Force
An attacker can bypass restrictions via Brute Force of Drupal YubiKey, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2020-023, VIGILANCE-VUL-32526
Drupal Open ReadSpeaker: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Drupal Open ReadSpeaker, in order to run JavaScript code in the context of the web site...
DRUPAL-SA-CONTRIB-2020-024, VIGILANCE-VUL-32525
Drupal Services: privilege escalation via Taxonomy Term
An attacker can bypass restrictions via Taxonomy Term of Drupal Services, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2020-022, VIGILANCE-VUL-32408
Our database contains other pages. You can request a free trial to read them.

Display information about Drupal Modules ~ not comprehensive: