Search for packages
| purl | pkg:alpm/archlinux/drupal@8.2.2-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-sktb-khbq-cuaq
Aliases: CVE-2016-9450 GHSA-98w5-wqp9-w466 |
Incorrect cache context on password reset page The user password reset form does not specify a proper cache context, which can lead to cache poisoning and unwanted content on the page. |
Affected by 0 other vulnerabilities. |
|
VCID-vy1y-zkf3-4ue4
Aliases: CVE-2016-9452 GHSA-jpj8-49hr-wcwv |
Denial of service via transliterate mechanism A specially crafted URL can cause a denial of service via the transliterate mechanism. |
Affected by 0 other vulnerabilities. |
|
VCID-yrzt-3m97-53ce
Aliases: CVE-2016-9449 GHSA-p745-347h-hjfw |
Unprivileged access to taxonomy terms Modules wishing to restrict access to taxonomy terms may be incompatible with queries generated both by Drupal core as well as those generated by contributed modules like Entity Reference. As a result, information on taxonomy terms may be disclosed to unprivileged users. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T18:27:14.392054+00:00 | Arch Linux Importer | Affected by | VCID-yrzt-3m97-53ce | https://security.archlinux.org/AVG-74 | 38.0.0 |
| 2026-04-01T18:27:14.365864+00:00 | Arch Linux Importer | Affected by | VCID-sktb-khbq-cuaq | https://security.archlinux.org/AVG-74 | 38.0.0 |
| 2026-04-01T18:27:14.339852+00:00 | Arch Linux Importer | Affected by | VCID-vy1y-zkf3-4ue4 | https://security.archlinux.org/AVG-74 | 38.0.0 |