drupal/drupal Security Advisories for 11.0.5 (4)
-
[HIGH] Drupal core contains a potential PHP Object Injection vulnerability
PKSA-f9kw-rbqc-jfd9 CVE-2024-55637 GHSA-w6rx-9g2x-mg5g
Affected version: >=11.0.0,<11.0.8|>=10.3.0,<10.3.9|>=8.8.0,<10.2.11
Reported by:
GitHub -
[LOW] Drupal core contains a potential PHP Object Injection vulnerability
PKSA-hgjs-5g3g-12t8 CVE-2024-55636 GHSA-938f-5r4f-h65v
Affected version: >=11.0.0,<11.0.8|>=10.3.0,<10.3.9|>=8.8.0,<10.2.11
Reported by:
GitHub -
[MEDIUM] Drupal core Access bypass
PKSA-bnz1-mtnt-3dxx CVE-2024-55634 GHSA-7cwc-fjqm-8vh8
Affected version: >=11.0.0,<11.0.8|>=10.3.0,<10.3.9|>=8.0.0,<10.2.11
Reported by:
GitHub -
[MEDIUM] Drupal Core Cross-Site Scripting (XSS)
PKSA-386w-45b9-kksb CVE-2024-12393 GHSA-8mvq-8h2v-j9vf
Affected version: >=11.0.0,<11.0.8|>=10.3.0,<10.3.9|>=8.8.0,<10.2.11
Reported by:
GitHub