Drupal Core — Vulnerabilities & Security Advisories 46

All 46 CVE vulnerabilities found in Drupal Core, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Paused
CVE-2025-13083	Drupal core - Moderately critical - Information disclosure - SA-CORE-2025-008 CWE-525	7.5^AI	High^AI	2025-11-18
CVE-2025-13082	Drupal core - Moderately critical - Defacement - SA-CORE-2025-007 CWE-451	4.3^AI	Medium^AI	2025-11-18
CVE-2025-13081	Drupal core - Moderately critical - Gadget chain - SA-CORE-2025-006 CWE-915	9.8^AI	Critical^AI	2025-11-18
CVE-2025-13080	Drupal core - Moderately critical - Denial of Service - SA-CORE-2025-005 CWE-754	-	-^AI	2025-11-18
CVE-2025-31675	Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2025-004 CWE-79	6.1	-	2025-03-31
CVE-2025-31674	Drupal core - Moderately critical - Gadget Chain - SA-CORE-2025-003 CWE-915	9.8	-	2025-03-31
CVE-2025-31673	Drupal core - Moderately critical - Access bypass - SA-CORE-2025-002 CWE-863	6.5	-	2025-03-31
CVE-2025-3057	Drupal core - Critical - Cross site scripting - SA-CORE-2025-001 CWE-79	6.1	-	2025-03-31
CVE-2024-55638	Drupal core - Moderately critical - Gadget chain - SA-CORE-2024-008 CWE-915	9.8	-	2024-12-09
CVE-2024-55637	Drupal core - Moderately critical - Gadget chain - SA-CORE-2024-007 CWE-915	9.8	-	2024-12-09
CVE-2024-55636	Drupal core - Less critical - Gadget chain - SA-CORE-2024-006 CWE-915	9.8	-	2024-12-09
CVE-2024-55635	Drupal core - Critical - Cross Site Scripting - SA-CORE-2024-005 CWE-79	6.1	-	2024-12-09
CVE-2024-55634	Drupal core - Moderately critical - Access bypass - SA-CORE-2024-004 CWE-178	8.8	-	2024-12-09
CVE-2024-12393	Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2024-003 CWE-79	6.1	-	2024-12-09
CVE-2024-11942	Drupal core - Moderately critical - Improper error handling - SA-CORE-2024-002 CWE-390	9.1	-	2024-12-05
CVE-2024-11941	Drupal core - Moderately critical - Denial of Service - SA-CORE-2024-001 CWE-835	7.5	-	2024-12-05
CVE-2024-45440	Drupal 安全漏洞	5.3^AI	Medium^AI	2024-08-29
CVE-2020-13688	Drupal Core 跨站脚本漏洞	6.1	-	2021-06-11
CVE-2020-13663	Drupal 跨站请求伪造漏洞	8.8	-	2021-06-11
CVE-2020-13667	Drupal 安全漏洞	7.5	-	2021-05-17
CVE-2020-13664	Drupal 命令注入漏洞	8.8	-	2021-05-05
CVE-2020-13662	IBM API Connect 输入验证错误漏洞	6.1	-	2021-05-05
CVE-2020-13665	Drupal 安全漏洞	9.8	-	2021-05-05
CVE-2020-13666	Drupal 跨站脚本漏洞	6.1	-	2021-05-05
CVE-2020-13671	Drupal core 代码问题漏洞	8.8	-	2020-11-20
CVE-2019-6342	Drupal core - Critical - Access bypass - SA-CORE-2019-008	7.5	-	2020-05-28
CVE-2011-2726	Drupal 安全漏洞	7.5	-	2019-11-15
CVE-2019-6341	Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004	5.4	-	2019-03-26
CVE-2019-6340	Drupal core - Highly critical - Remote Code Execution	8.1	-	2019-02-21
CVE-2017-6923	Access bypass in Drupal 8 views	6.5	-	2019-01-22

All 46 known CVE vulnerabilities affecting Drupal Core with full Chinese analysis, references, and POCs where available.

Support Us — Your donation helps us keep running

Drupal Core — Vulnerabilities & Security Advisories 46