Drupal core - Moderately critical - Cross-site scripting - SA-CORE-2026-003 Read post
7 hours ago
0
0
0
0
Posts by Drupal Security Team
Drupal core - Moderately critical - Gadget Chain - SA-CORE-2026-002 Read post
7 hours ago
0
0
0
0
Drupal core - Critical - Cross-site scripting - SA-CORE-2026-001 Read post
7 hours ago
0
0
0
0
Orejime - Moderately critical - Cross-site scripting - SA-CONTRIB-2026-032 Read post
1 week ago
0
0
0
0
SAML SSO - Service Provider - Critical - Authentication bypass - SA-CONTRIB-2026-031 Read post
2 weeks ago
0
0
0
0
Automated Logout - Moderately critical - Cross-site request forgery - SA-CONTRIB-2026-030 Read post
4 weeks ago
0
1
0
0
Unpublished Node Permissions - Critical - Access bypass - SA-CONTRIB-2026-029 Read post
1 month ago
0
0
0
0
Advertisement
AI (Artificial Intelligence) - Moderately critical - Information Disclosure - SA-CONTRIB-2026-028 Read post
1 month ago
0
0
0
0
There is a delay in delivering emails announcing today's advisories due to the drupal.org data center migration. See drupal.community/@drupalinfra... for more details.
1 month ago
0
0
0
0
OpenID Connect / OAuth client - Less critical - Access bypass - SA-CONTRIB-2026-027 Read post
1 month ago
1
0
0
0
OpenID Connect / OAuth client - Moderately critical - Access bypass - SA-CONTRIB-2026-026 Read post
1 month ago
0
0
0
0
OpenID Connect / OAuth client - Moderately critical - Server-side request forgery, Information disclosure - SA-CONTRIB-2026-025 Read post
1 month ago
0
0
0
0
Google Analytics GA4 - Moderately critical - Cross-site Scripting - SA-CONTRIB-2026-024 Read post
1 month ago
0
0
0
0
Calculation Fields - Moderately critical - Cross-site Scripting - SA-CONTRIB-2026-023 Read post
1 month ago
0
0
0
0
Advertisement
AJAX Dashboard - Critical - Access bypass - SA-CONTRIB-2026-022 Read post
1 month ago
0
0
0
0
File Access Fix (deprecated) - Moderately critical - Access bypass - SA-CONTRIB-2026-021 Read post
1 month ago
0
0
0
0
File Access Fix (deprecated) - Moderately critical - Access bypass - SA-CONTRIB-2026-020 Read post
1 month ago
0
0
0
0
Responsive Favicons - Moderately critical - Cross-site scripting - SA-CONTRIB-2026-019 Read post
1 month ago
0
0
0
0
SAML SSO - Service Provider - Critical - Cross-site scripting - SA-CONTRIB-2026-018 Read post
1 month ago
0
0
0
0
Drupal Canvas - Moderately critical - Server-side request forgery, Information disclosure - SA-CONTRIB-2026-017 Read post
1 month ago
0
0
0
0
Islandora - Moderately critical - Arbitrary file upload, Cross-site scripting - SA-CONTRIB-2026-016 Read post
1 month ago
0
0
0
0
CAPTCHA - Moderately critical - Access bypass - SA-CONTRIB-2026-015 Read post
1 month ago
0
0
0
0
Advertisement
Anti-Spam by CleanTalk - Moderately critical - Cross-site scripting - SA-CONTRIB-2026-014 Read post
1 month ago
0
0
0
0
Tagify - Moderately critical - Cross-site scripting - SA-CONTRIB-2026-013 Read post
1 month ago
0
0
0
0
Theme Negotiation by Rules - Moderately critical - Cross-site request forgery - SA-CONTRIB-2026-012 Read post
1 month ago
0
0
0
0
Material Icons - Moderately critical - Access bypass - SA-CONTRIB-2026-011 Read post
1 month ago
0
0
0
0
UI Icons - Moderately critical - Cross-site Scripting - SA-CONTRIB-2026-010 Read post
2 months ago
0
0
0
0
Quick Edit - Moderately critical - Cross-site Scripting - SA-CONTRIB-2026-009 Read post
2 months ago
0
0
0
0
Login Disable - Less critical - Access bypass - SA-CONTRIB-2026-008 Read post
2 months ago
0
0
0
0
Central Authentication System (CAS) Server - Less critical - XML Element Injection - SA-CONTRIB-2026-007 Read post
2 months ago
1
0
0
0
Advertisement