Security News > 2017 > April > Drupal Closes Access Bypass Vulnerability in Core Engine (Threatpost)

Drupal Closes Access Bypass Vulnerability in Core Engine (Threatpost)

2017-04-20 13:57

Drupal released a point update for its core engine to patch a critical access bypass vulnerability.

News URL

http://threatpost.com/drupal-closes-access-bypass-vulnerability-in-core-engine/125080/

#bypass #drupal #threatpost #vulnerability

Related news

Juniper Session Smart Routers Vulnerability Could Let Attackers Bypass Authentication (source)
Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches (source)
Critical Next.js Vulnerability Allows Attackers to Bypass Middleware Authorization Checks (source)
Critical Next.js auth bypass vulnerability opens web apps to compromise (CVE-2025-29927) (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Drupal		15	0	66	45	14	125

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.