Drupal vulnerability scope
About the product
Drupal is a free and open-source web content management framework written in PHP, Drupal provides a back-end framework for at least 2.3% of all websites worldwide – ranging from personal blogs to corporate, political, and government sites.
Vulnerabilities in demand
- Code/command execution
- Authentication bypass
- Cross-site scripting (XSS) vulnerability leading to RCE
- Directory traversal vulnerability