claytonvantol.us

SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2020-13671-drupal-drupal-core.log

CVE-2020-13671 — Drupal core Un-restricted Upload of File

2022-01-18 • CISA Known Exploited Vulnerability

[event] Improper sanitization in the extension file names is present in Drupal core.

> AFFECTED SOFTWARE

Field	Value
Vendor	Drupal
Product	Drupal core
CWE	CWE-434
CVE ID	CVE-2020-13671
Date Added	2022-01-18
Due Date	2022-07-18
Ransomware Campaign	Unknown

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-07-18

> REFERENCES

[1] https://nvd.nist.gov/vuln/detail/CVE-2020-13671

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:14 UTC