VDB

CVE-2020-13663

CVE-2020-13663 PUBLISHED

Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.

EPSS 0.16% · 35.9th percentile

Risk Scores

EPSS Score
0.16%
35.9th percentile

Affected Products

VendorProductVersions
Bitnamidrupal8.8.0, 8.9.0, 9.0.0
Bitnamidrupal7.0.0, 8.8.0, 9.0.0

Timeline

  • Jun 17, 2020 CVE Published
  • Jun 12, 2021 EPSS Score
  • Aug 13, 2021 EPSS Score
  • Oct 12, 2021 EPSS Score
  • Dec 12, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 11, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Apr 12, 2022 EPSS Score
  • Jun 12, 2022 EPSS Score
  • Aug 13, 2022 EPSS Score
  • Oct 12, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›