Search for packages
Package details: pkg:composer/drupal/drupal@11.0.0-alpha1
purl pkg:composer/drupal/drupal@11.0.0-alpha1
Next non-vulnerable version 11.0.8
Latest non-vulnerable version 11.0.8
Risk 10.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-r8jq-7x4r-aaaq
Aliases:
GHSA-wxfg-253g-m7r4
Drupal core Open Redirect vulnerability There are no reported fixed by versions.
VCID-y3g8-ayqw-5fer
Aliases:
CVE-2024-45440
GHSA-mg8j-w93w-xjgc
core/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (even when error logging is None) if the value of hash_salt is file_get_contents of a file that does not exist.
11.0.5
Affected by 4 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-y3g8-ayqw-5fer core/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (even when error logging is None) if the value of hash_salt is file_get_contents of a file that does not exist. CVE-2024-45440
GHSA-mg8j-w93w-xjgc

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:07:08.756114+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.1.3
2025-06-20T17:07:04.419782+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.1.3
2025-06-20T16:59:13.410617+00:00 GitLab Importer Affected by VCID-r8jq-7x4r-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/GHSA-wxfg-253g-m7r4.yml 36.1.3
2025-06-03T23:43:15.316314+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.1.0
2025-06-03T23:43:11.628974+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.1.0
2025-06-03T23:35:48.315532+00:00 GitLab Importer Affected by VCID-r8jq-7x4r-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/GHSA-wxfg-253g-m7r4.yml 36.1.0
2025-06-02T23:41:34.222150+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.1.2
2025-06-02T23:41:30.019127+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.1.2
2025-06-02T23:33:55.222795+00:00 GitLab Importer Affected by VCID-r8jq-7x4r-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/GHSA-wxfg-253g-m7r4.yml 36.1.2
2025-04-03T22:22:02.762816+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.0.0
2025-04-03T22:21:54.323181+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 36.0.0
2025-04-03T22:07:33.345943+00:00 GitLab Importer Affected by VCID-r8jq-7x4r-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/GHSA-wxfg-253g-m7r4.yml 36.0.0
2025-02-18T04:08:30.284609+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 35.1.0
2025-02-18T04:08:15.633382+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 35.1.0
2025-02-18T01:16:18.168766+00:00 GitLab Importer Affected by VCID-r8jq-7x4r-aaaq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/GHSA-wxfg-253g-m7r4.yml 35.1.0
2024-11-21T01:15:56.387960+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 35.0.0
2024-11-21T01:15:41.932339+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 35.0.0
2024-11-19T01:03:52.515281+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 34.3.2
2024-11-19T01:03:38.402746+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 34.3.2
2024-10-08T01:41:17.191879+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 34.0.2
2024-10-08T01:41:11.618009+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 34.0.2
2024-10-07T22:21:48.113966+00:00 GHSA Importer Affected by VCID-y3g8-ayqw-5fer https://github.com/advisories/GHSA-mg8j-w93w-xjgc 34.0.2
2024-10-07T22:21:46.376292+00:00 GHSA Importer Fixing VCID-y3g8-ayqw-5fer https://github.com/advisories/GHSA-mg8j-w93w-xjgc 34.0.2
2024-10-07T03:01:56.168724+00:00 GitLab Importer Fixing VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 34.0.1
2024-10-06T23:54:30.222733+00:00 GHSA Importer Fixing VCID-y3g8-ayqw-5fer https://github.com/advisories/GHSA-mg8j-w93w-xjgc 34.0.1
2024-09-29T10:14:31.772201+00:00 GitLab Importer Affected by VCID-y3g8-ayqw-5fer https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/drupal/drupal/CVE-2024-45440.yml 34.0.1
2024-09-29T07:08:14.442412+00:00 GHSA Importer Affected by VCID-y3g8-ayqw-5fer https://github.com/advisories/GHSA-mg8j-w93w-xjgc 34.0.1