Drupal Multiple Vulnerabilities

Last Update Date: 21 Dec 2018 10:18 Release Date: 21 Dec 2018 5249 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Internet App Servers

TYPE: Internet App Servers

Multiple vulnerabilities have been identified in Drupal. A remote user can exploit these vulnerabilities to trigger cross site scripting and security restriction bypass on the targeted system.

Impact

  • Cross-Site Scripting
  • Security Restriction Bypass

System / Technologies affected

  • Versions prior to Drupal: JSON API 8.x-1.24
  • Versions prior to Drupal: Esign 7.x-1.10

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to Drupal: JSON API 8.x-1.24
  • Update to Drupal: Esign 7.x-1.10

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Microsoft Windows Information Disclosure Vulnerability

21 Dec 2018 5256 Views

Next

Adobe Acrobat Reader Multiple Vulnerabilities

4 Jan 2019 4576 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY