Drupal

Drupal core - Critical - Cache poisoning - SA-CORE-2023-006

Drupal core - Critical - Cache poisoning - SA-CORE-2023-006

Project: Drupal core
Date: 2023-September-20
Security risk: Critical 16∕25
Vulnerability: Cache poisoning
Affected versions: >=8.7.0 =10.0 = 10.1 

Description

In certain scenarios, Drupal's JSON:API module will output error backtraces. With some configurations, this may cause sensitive information to be cached and made available to anonymous users, leading to privilege escalation.

Read More

Config Pages - Moderately critical - Information Disclosure - SA-CONTRIB-2023-037

Config Pages - Moderately critical - Information Disclosure - SA-CONTRIB-2023-037

Project: Config Pages
Version: 8.x-2.8, 8.x-2.7, 8.x-2.6, 8.x-2.5,8.x-2.4, 8.x-2.3, 8.x-2.2, 8.x-2.1, 8.x-2.0
Date: 2023-August-23
Security risk: Moderately critical 12∕25
Vulnerability: Information Disclosure
Affected versions: 

Description

This module enables you to build administrative pages for managing configuration objects, which may then be used elsewhere in the site.

The module doesn't sufficiently validate access when the JSONAPI module is also installed.

Read More

ACL - Critical - Arbitrary PHP code execution - SA-CONTRIB-2023-034

ACL - Critical - Arbitrary PHP code execution - SA-CONTRIB-2023-034

Project: ACL
Date: 2023-August-23
Security risk: Critical 17∕25
Vulnerability: Arbitrary PHP code execution
Affected versions: 

Description

The ACL module, short for Access Control Lists, is an API for other modules to create lists of users and give them access to nodes.

The module processes user input in a way that could be unsafe. This can lead to Remote Code Execution via Object Injection.

Read More

AddToAny Share Buttons - Moderately critical - Cross Site Scripting - SA-CONTRIB-2023-019

AddToAny Share Buttons - Moderately critical - Cross Site Scripting - SA-CONTRIB-2023-019

Project: AddToAny Share Buttons
Date: 2023-May-31
Security risk: Moderately critical 13∕25
Vulnerability: Cross Site Scripting

Description

This module provides social media share & follow buttons.

The module doesn't sufficiently restrict AddToAny block settings to users who have permission to administer AddToAny. This allows users with lower permission to configure malicious code leading to a Cross Site Scripting (XSS) vulnerability.

Read More

Drupal core - Moderately critical - Access bypass - SA-CORE-2023-005

Drupal core - Moderately critical - Access bypass - SA-CORE-2023-005

Project: Drupal core
Date: 2023-April-19
Security risk: Moderately critical 13∕25 
Vulnerability: Access bypass

Description

The file download facility doesn't sufficiently sanitize file paths in certain situations. This may result in users gaining access to private files that they should not have access to.

Some sites may require configuration changes following this security release. Review the release notes for your Drupal version if you have issues accessing private files after updating.

Read More

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-003

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-003

Project: Drupal core
Date: 2023-March-15
Security risk: Moderately critical 13∕25
Vulnerability: Information Disclosure
Affected versions: >=8.0.0 =9.5.0 =10.0.0 

Description

The language module provides a Language switcher block which can be placed to provide links to quickly switch between different languages.

The URL of unpublished translations may be disclosed. When used in conjunction with a module like Pathauto, this may reveal the title of unpublished content.

Read More

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-002

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-002

Project: Drupal core
Date: 2023-March-15
Security risk: Moderately critical 14∕25
Vulnerability: Information Disclosure
Affected versions: >=8.0.0 =9.5.0 =10.0.0 

Description

The Media module does not properly check entity access in some circumstances. This may result in users seeing thumbnails of media items they do not have access to, including for private files.

Read More

Media Responsive Thumbnail - Moderately critical - Information disclosure - SA-CONTRIB-2023-010

Media Responsive Thumbnail - Moderately critical - Information disclosure - SA-CONTRIB-2023-010

Project: Media Responsive Thumbnail
Date: 2023-March-15
Security risk: Moderately critical 14∕25 
Vulnerability: Information disclosure

Description

The Media Responsive Thumbnail module allows media reference fields to be rendered as a responsive image.

This module does not properly check entity access prior to rendering media. This may result in users seeing thumbnails of media items they do not have access to.

Read More

Pages