Drupal : Security Vulnerabilities, CVEs, (CSRF) CVSS score >= 8
Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.
Max CVSS
8.8
EPSS Score
0.07%
Published
2021-06-11
Updated
2021-06-21
A cross-site request forgery (CSRF) vulnerability in the Activity module 6.x-1.x for Drupal.
Max CVSS
8.8
EPSS Score
0.07%
Published
2019-11-22
Updated
2019-12-11
2 vulnerabilities found