Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / drupal

drupal

509 tracked vulnerabilities.

Drupal - Cross-Site Scripting via Encoded JavaScript in IMG Tag

Drupal 4.5.0-4.5.5 and 4.6.0-4.6.3 - Cross-Site Scripting via HTML Tag Injection

Drupal <4.5.5, <4.6.3 - Privilege Escalation

Drupal 4.5.0-4.5.5 & 4.6.0-4.6.3 - XSS

PEAR XML_RPC < 1.3.0 and PHPXMLRPC < 1.1 - Remote Code Execution via Unsanitized XML Input

Drupal 4.5.0-4.5.3, 4.6.0-4.6.1 - Remote Code Execution via Public Comment or Posting

Drupal 4.4.0-4.6.0 - Unauthenticated Privilege Escalation via Improper Input Validation

Drupal < 4.5.2 - Cross-Site Scripting via Common.inc Inputs

Drupal 4.0.0 - Cross-Site Scripting via IMG Tag Javascript

Previous Page 21 of 21

Products

drupal 273 core 91 core-recommended 6 project_issue_tracking_module 6 Drupal core 5 print 5 aggregation_module 4 ai 4 everyblog 4 project 4 ubercart_module 4 Drupal Core 3 OpenID Connect / OAuth client 3 content_construction_kit 3 drupal_project_issue_tracking 3 shindig-integrator 3 File Access Fix (deprecated) 2 activity 2 ajax_checklist 2 artificial_intelligence 2 bibliography_module 2 brilliant_gallery 2 chatroom_module 2 civictheme 2 cookies_consent_management 2 custom_search_module 2 data 2 database_administration_module 2 drupal_easylinks_module 2 google_tag 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy