Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2020-13671

Drupal | Drupal coreAdded 2022-01-18Remediation Deadline 2022-07-18

Drupal core Un-restricted Upload of File

Improper sanitization in the extension file names is present in Drupal core.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-434

References