Skip to content

Commit b4de8af

Browse files
feat: update advisories
1 parent de4ed84 commit b4de8af

4 files changed

Lines changed: 268 additions & 2 deletions

File tree

Lines changed: 94 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,94 @@
1+
{
2+
"schema_version": "1.7.0",
3+
"id": "DRUPAL-CORE-2026-001",
4+
"modified": "2026-04-15T19:24:30.000Z",
5+
"published": "2026-04-15T19:24:30.000Z",
6+
"aliases": [
7+
"CVE-2026-6365"
8+
],
9+
"details": "Drupal core's jQuery integration for AJAX modal dialog boxes does not sufficiently sanitize certain options, which which can lead to a cross-site scripting (XSS) vulnerability.",
10+
"affected": [
11+
{
12+
"package": {
13+
"ecosystem": "Packagist",
14+
"name": "drupal/core"
15+
},
16+
"severity": [],
17+
"ranges": [
18+
{
19+
"type": "ECOSYSTEM",
20+
"events": [
21+
{
22+
"introduced": "8.0.0"
23+
},
24+
{
25+
"fixed": "10.5.9"
26+
}
27+
],
28+
"database_specific": {
29+
"constraint": ">= 8.0.0 < 10.5.9"
30+
}
31+
},
32+
{
33+
"type": "ECOSYSTEM",
34+
"events": [
35+
{
36+
"introduced": "10.6.0"
37+
},
38+
{
39+
"fixed": "10.6.7"
40+
}
41+
],
42+
"database_specific": {
43+
"constraint": ">= 10.6.0 < 10.6.7"
44+
}
45+
},
46+
{
47+
"type": "ECOSYSTEM",
48+
"events": [
49+
{
50+
"introduced": "11.0.0"
51+
},
52+
{
53+
"fixed": "11.2.11"
54+
}
55+
],
56+
"database_specific": {
57+
"constraint": ">= 11.0.0 < 11.2.11"
58+
}
59+
},
60+
{
61+
"type": "ECOSYSTEM",
62+
"events": [
63+
{
64+
"introduced": "11.3.0"
65+
},
66+
{
67+
"fixed": "11.3.7"
68+
}
69+
],
70+
"database_specific": {
71+
"constraint": ">= 11.3.0 < 11.3.7"
72+
}
73+
}
74+
],
75+
"database_specific": {
76+
"affected_versions": ">= 8.0.0 < 10.5.9 || >= 10.6.0 < 10.6.7 || >= 11.0.0 < 11.2.11 || >= 11.3.0 < 11.3.7"
77+
}
78+
}
79+
],
80+
"references": [
81+
{
82+
"type": "WEB",
83+
"url": "https://www.drupal.org/sa-core-2026-001"
84+
}
85+
],
86+
"credits": [
87+
{
88+
"name": "Murat Keki\u00e7 (murat_kekic)",
89+
"contact": [
90+
"https://www.drupal.org/u/murat_kekic"
91+
]
92+
}
93+
]
94+
}
Lines changed: 106 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,106 @@
1+
{
2+
"schema_version": "1.7.0",
3+
"id": "DRUPAL-CORE-2026-002",
4+
"modified": "2026-04-15T19:25:23.000Z",
5+
"published": "2026-04-15T19:25:23.000Z",
6+
"aliases": [
7+
"CVE-2026-6366"
8+
],
9+
"details": "Drupal core contains a chain of methods that could be exploitable when an insecure deserialization vulnerability exists on the site. This so-called \"gadget chain\" presents no direct threat, but is a vector that can be used to achieve remote code execution or SQL injection if the application deserializes untrusted data due to another vulnerability.\n\nThis issue is not directly exploitable.\n\nThis issue is mitigated by the fact that in order for it to be exploitable, a separate vulnerability must be present to allow an attacker to pass unsafe input to `unserialize()`. There are no such known exploits in Drupal core.",
10+
"affected": [
11+
{
12+
"package": {
13+
"ecosystem": "Packagist",
14+
"name": "drupal/core"
15+
},
16+
"severity": [],
17+
"ranges": [
18+
{
19+
"type": "ECOSYSTEM",
20+
"events": [
21+
{
22+
"introduced": "8.0.0"
23+
},
24+
{
25+
"fixed": "10.5.9"
26+
}
27+
],
28+
"database_specific": {
29+
"constraint": ">= 8.0.0 < 10.5.9"
30+
}
31+
},
32+
{
33+
"type": "ECOSYSTEM",
34+
"events": [
35+
{
36+
"introduced": "10.6.0"
37+
},
38+
{
39+
"fixed": "10.6.7"
40+
}
41+
],
42+
"database_specific": {
43+
"constraint": ">= 10.6.0 < 10.6.7"
44+
}
45+
},
46+
{
47+
"type": "ECOSYSTEM",
48+
"events": [
49+
{
50+
"introduced": "11.0.0"
51+
},
52+
{
53+
"fixed": "11.2.11"
54+
}
55+
],
56+
"database_specific": {
57+
"constraint": ">= 11.0.0 < 11.2.11"
58+
}
59+
},
60+
{
61+
"type": "ECOSYSTEM",
62+
"events": [
63+
{
64+
"introduced": "11.3.0"
65+
},
66+
{
67+
"fixed": "11.3.7"
68+
}
69+
],
70+
"database_specific": {
71+
"constraint": ">= 11.3.0 < 11.3.7"
72+
}
73+
}
74+
],
75+
"database_specific": {
76+
"affected_versions": ">= 8.0.0 < 10.5.9 || >= 10.6.0 < 10.6.7 || >= 11.0.0 < 11.2.11 || >= 11.3.0 < 11.3.7"
77+
}
78+
}
79+
],
80+
"references": [
81+
{
82+
"type": "WEB",
83+
"url": "https://www.drupal.org/sa-core-2026-002"
84+
}
85+
],
86+
"credits": [
87+
{
88+
"name": "Truong Le (hswww)",
89+
"contact": [
90+
"https://www.drupal.org/u/hswww"
91+
]
92+
},
93+
{
94+
"name": "menon",
95+
"contact": [
96+
"https://www.drupal.org/u/menon"
97+
]
98+
},
99+
{
100+
"name": "t-chen",
101+
"contact": [
102+
"https://www.drupal.org/u/t-chen"
103+
]
104+
}
105+
]
106+
}
Lines changed: 64 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,64 @@
1+
{
2+
"schema_version": "1.7.0",
3+
"id": "DRUPAL-CORE-2026-003",
4+
"modified": "2026-04-15T19:27:21.000Z",
5+
"published": "2026-04-15T19:27:21.000Z",
6+
"aliases": [
7+
"CVE-2026-6367"
8+
],
9+
"details": "Drupal 11.3 comes with support for completing entity suggestions whilst adding a link to CKEditor 5.\n\nThe suggestions aren't sufficiently sanitized and a malicious user could trigger a stored cross site scripting attack against another user.",
10+
"affected": [
11+
{
12+
"package": {
13+
"ecosystem": "Packagist",
14+
"name": "drupal/core"
15+
},
16+
"severity": [],
17+
"ranges": [
18+
{
19+
"type": "ECOSYSTEM",
20+
"events": [
21+
{
22+
"introduced": "11.3.0"
23+
},
24+
{
25+
"fixed": "11.3.7"
26+
}
27+
],
28+
"database_specific": {
29+
"constraint": ">= 11.3.0 < 11.3.7"
30+
}
31+
}
32+
],
33+
"database_specific": {
34+
"affected_versions": ">= 11.3.0 < 11.3.7"
35+
}
36+
}
37+
],
38+
"references": [
39+
{
40+
"type": "WEB",
41+
"url": "https://www.drupal.org/sa-core-2026-003"
42+
}
43+
],
44+
"credits": [
45+
{
46+
"name": "Dries Buytaert (dries)",
47+
"contact": [
48+
"https://www.drupal.org/u/dries"
49+
]
50+
},
51+
{
52+
"name": "Shirsendu Mondal",
53+
"contact": [
54+
"https://www.drupal.org/u/shirsendu-mondal"
55+
]
56+
},
57+
{
58+
"name": "cantina_security",
59+
"contact": [
60+
"https://www.drupal.org/u/cantina_security"
61+
]
62+
}
63+
]
64+
}

advisories/orejime/DRUPAL-CONTRIB-2026-032.json

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,11 @@
11
{
22
"schema_version": "1.7.0",
33
"id": "DRUPAL-CONTRIB-2026-032",
4-
"modified": "2026-04-08T16:09:54.000Z",
4+
"modified": "2026-04-10T16:51:06.000Z",
55
"published": "2026-04-08T16:09:54.000Z",
6-
"aliases": [],
6+
"aliases": [
7+
"CVE-2026-6095"
8+
],
79
"details": "The IframeConsent element writes HTML attributes without escaping their value.\n\nThis module has a XSS vulnerability. If an attacker is able to write an `<iframe-consent>` tag, they may be able to insert arbitrary JavaScript.\n\nThis vulnerability is mitigated by the fact that a text format that allows `iframe-consent` HTML tags with alt attributes in the necessary option (*Enable JS Iframe consent*) must be enabled, and an attacker must have a role allowing the creation or modification of content in a field with text the format.",
810
"affected": [
911
{

0 commit comments

Comments
 (0)