Drupal core – Moderately critical – Access Bypass – SA-CORE-2021-010
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 12∕25 AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:Default Vulnerability: Access Bypass CVE IDs: CVE-2020-13677 Description: Under some circumstances, the Drupal core JSON:API...
Drupal core – Moderately critical – Access bypass – SA-CORE-2021-009
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 10∕25 AC:Basic/A:User/CI:Some/II:None/E:Theoretical/TD:Default Vulnerability: Access bypass CVE IDs: CVE-2020-13676 Description: The QuickEdit module does not properly check...
Drupal core – Moderately critical – Access bypass – SA-CORE-2021-008
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 11∕25 AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:Uncommon Vulnerability: Access bypass CVE IDs: CVE-2020-13675 Description: Drupal's JSON:API and REST/File modules allow file...
Drupal core – Moderately critical – Cross Site Request Forgery – SA-CORE-2021-007
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 14∕25 AC:Complex/A:None/CI:Some/II:Some/E:Theoretical/TD:Default Vulnerability: Cross Site Request Forgery CVE IDs: CVE-2020-13674 Description: The QuickEdit module does not...
Drupal core – Moderately critical – Cross Site Request Forgery – SA-CORE-2021-006
Project: Drupal core Date: 2021-September-15 Security risk: Moderately critical 10∕25 AC:Basic/A:User/CI:None/II:Some/E:Theoretical/TD:Default Vulnerability: Cross Site Request Forgery CVE IDs: CVE-2020-13673 Description: The Drupal core Media module...