The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Drupal Modules ~ not comprehensive

Drupal Webform: spoofing via Email Sending
An attacker can create spoofed data via Email Sending of Drupal Webform, in order to deceive the victim...
DRUPAL-SA-CONTRIB-2021-004, VIGILANCE-VUL-34746
Drupal Subgroup: privilege escalation via Uncle/Cousin Tree
An attacker can bypass restrictions via Uncle/Cousin Tree of Drupal Subgroup, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2021-003, VIGILANCE-VUL-34424
Drupal Open Social: information disclosure via CSV File Export
An attacker can bypass access restrictions to data via CSV File Export of Drupal Open Social, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2021-002, VIGILANCE-VUL-34423
Drupal Open Social: privilege escalation via social_auth_extra
An attacker can bypass restrictions via social_auth_extra of Drupal Open Social, in order to escalate his privileges...
DRUPAL-SA-CONTRIB-2021-001, VIGILANCE-VUL-34422
Drupal Ink Filepicker: vulnerability
A vulnerability of Drupal Ink Filepicker was announced...
DRUPAL-SA-CONTRIB-2020-037, VIGILANCE-VUL-33927
Drupal OAuth Server: SQL injection
An attacker can use a SQL injection of Drupal OAuth Server, in order to read or alter data...
DRUPAL-SA-CONTRIB-2020-034, VIGILANCE-VUL-33575
Drupal Group: information disclosure
An attacker can bypass access restrictions to data of Drupal Group, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-032, DRUPAL-SA-CONTRIB-2020-033, VIGILANCE-VUL-33027
Drupal Hostmaster Aegir: code execution
An attacker can use a vulnerability of Drupal Hostmaster Aegir, in order to run code...
DRUPAL-SA-CONTRIB-2020-031, VIGILANCE-VUL-32962
Drupal Group: information disclosure
An attacker can bypass access restrictions to data of Drupal Group, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-030, VIGILANCE-VUL-32961
Drupal Modal Form: information disclosure
An attacker can bypass access restrictions to data of Drupal Modal Form, in order to obtain sensitive information...
DRUPAL-SA-CONTRIB-2020-029, VIGILANCE-VUL-32902
Our database contains other pages. You can request a free trial to read them.

Display information about Drupal Modules ~ not comprehensive: