VulnerableCode Package Details - pkg:alpm/archlinux/drupal@8.2.3-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/drupal@8.2.3-1

Essentials
History (3)

purl	pkg:alpm/archlinux/drupal@8.2.3-1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-sktb-khbq-cuaq	Incorrect cache context on password reset page The user password reset form does not specify a proper cache context, which can lead to cache poisoning and unwanted content on the page.	CVE-2016-9450 GHSA-98w5-wqp9-w466
VCID-vy1y-zkf3-4ue4	Denial of service via transliterate mechanism A specially crafted URL can cause a denial of service via the transliterate mechanism.	CVE-2016-9452 GHSA-jpj8-49hr-wcwv
VCID-yrzt-3m97-53ce	Unprivileged access to taxonomy terms Modules wishing to restrict access to taxonomy terms may be incompatible with queries generated both by Drupal core as well as those generated by contributed modules like Entity Reference. As a result, information on taxonomy terms may be disclosed to unprivileged users.	CVE-2016-9449 GHSA-p745-347h-hjfw

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:27:14.396404+00:00	Arch Linux Importer	Fixing	VCID-yrzt-3m97-53ce	https://security.archlinux.org/AVG-74	38.0.0
2026-04-01T18:27:14.369552+00:00	Arch Linux Importer	Fixing	VCID-sktb-khbq-cuaq	https://security.archlinux.org/AVG-74	38.0.0
2026-04-01T18:27:14.344394+00:00	Arch Linux Importer	Fixing	VCID-vy1y-zkf3-4ue4	https://security.archlinux.org/AVG-74	38.0.0