GoogleOSV:CVE-2020-13663

HistoryJun 11, 2021 - 4:15 p.m.

CVE-2020-13663

Vulners
Osv
CVE-2020-13663

2021-06-1116:15:08

Google

osv.dev

6.5 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

31.7%

JSON

Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.

CPENameOperatorVersion
drupaleq9.0.0

CPE	Name	Operator	Version
	drupal	eq	9.0.0

References

www.drupal.org/sa-core-2020-004

osv 4

openvas 7

debiancve 1

prion 1

nessus 9

debian 2

drupal 1

cvelist 1

friendsofphp 2

nvd 1

ubuntucve 1

alpinelinux 1

github 1

veracode 1

cve 1

ibm 1

fedora 3

osv

BIT-drupal-2020-13663

2024-03-06 10:58:43

drupal7 - security update

2020-06-18 00:00:00

drupal7 - security update

2020-06-29 00:00:00

openvas

Debian: Security Advisory (DSA-4706-1)

2020-06-20 00:00:00

Debian: Security Advisory (DLA-2263-1)

2020-07-01 00:00:00

Drupal 7.x, 8.x, 9.x CSRF Vulnerability (SA-CORE-2020-004) - Linux

2020-06-19 00:00:00

debiancve

CVE-2020-13663

2021-06-11 16:15:00

prion

Cross site request forgery (csrf)

2021-06-11 16:15:00

nessus

Debian DLA-2263-1 : drupal7 security update

2020-07-01 00:00:00

Debian DSA-4706-1 : drupal7 - security update

2020-06-22 00:00:00

Drupal 8.9.x < 8.9.1 Multiple Vulnerabilities

2020-06-26 00:00:00

debian

[SECURITY] [DLA 2263-1] drupal7 security update

2020-06-30 09:01:40

[SECURITY] [DSA 4706-1] drupal7 security update

2020-06-18 20:24:30

drupal

Drupal core - Critical - Cross Site Request Forgery - SA-CORE-2020-004

2020-06-17 00:00:00

cvelist

CVE-2020-13663

2021-06-11 15:07:25

friendsofphp

Drupal core - Critical - Cross Site Request Forgery - SA-CORE-2020-004

1970-01-01 00:00:00

Drupal core - Critical - Cross Site Request Forgery - SA-CORE-2020-004

1970-01-01 00:00:00

nvd

CVE-2020-13663

2021-06-11 16:15:08

ubuntucve

CVE-2020-13663

2021-06-11 00:00:00

alpinelinux

CVE-2020-13663

2021-06-11 16:15:08

github

Drupal Core Cross-Site Request Forgery (CSRF) vulnerability

2022-05-24 19:05:06

veracode

Cross-Site Request Forgery (CSRF)

2020-06-19 04:54:09

cve

CVE-2020-13663

2021-06-11 16:15:08

ibm

Security Bulletin: IBM API Connect is vulnerable to cross-site request forgery (CSRF) (CVE-2020-13663)

2020-10-06 21:21:51

fedora

[SECURITY] Fedora 33 Update: drupal7-7.72-1.fc33

2020-09-25 17:15:48

[SECURITY] Fedora 31 Update: drupal7-7.72-1.fc31

2020-09-13 14:19:12

[SECURITY] Fedora 32 Update: drupal7-7.72-1.fc32

2020-09-13 14:28:32

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVE-2020-13663

References

Related