VulnerableCode Package Details - pkg:composer/drupal/core@7.70.0

Search for packages

Package details: pkg:composer/drupal/core@7.70.0

Essentials
History (2)

purl	pkg:composer/drupal/core@7.70.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-q1zr-kxt4-yuaq	Drupal Core Open Redirect vulnerability Open Redirect vulnerability in Drupal Core allows a user to be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. This issue affects: Drupal Drupal Core 7 version 7.70 and prior versions.	CVE-2020-13662 GHSA-gjqg-9rhv-qj67
VCID-qgbp-6eqb-sqgp	Drupal core Open Redirect vulnerability Drupal 7 has an Open Redirect vulnerability. For example, a user could be tricked into visiting a specially crafted link which would redirect them to an arbitrary external URL. The vulnerability is caused by insufficient validation of the destination query parameter in the drupal_goto() function. Other versions of Drupal core are not vulnerable.	GHSA-6gf6-24h2-66j4

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-07-01T12:28:28.470283+00:00	GithubOSV Importer	Fixing	VCID-q1zr-kxt4-yuaq	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-gjqg-9rhv-qj67/GHSA-gjqg-9rhv-qj67.json	36.1.3
2025-07-01T12:11:24.460761+00:00	GithubOSV Importer	Fixing	VCID-qgbp-6eqb-sqgp	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/05/GHSA-6gf6-24h2-66j4/GHSA-6gf6-24h2-66j4.json	36.1.3