Vulnerabilities
Projects
Vulnerability Disclosure
About Us
Contact Us
Mend.io Vulnerability Database
What is a WS vulnerability ID?
What is an MSC vulnerability ID?
We found results for “”
WS-2022-0117
Good to know:
Date: April 20, 2022
Drupal core's form API prior to 9.2.18 and before 9.3.12 has a vulnerability where certain contributed or custom modules' forms may be vulnerable to improper input validation. This could allow an attacker to inject disallowed values or overwrite data. Affected forms are uncommon, but in certain cases an attacker could alter critical or sensitive data
Language: PHP
Severity Score
Severity Score
Weakness Type (CWE)
Improper Input Validation
CWE-20Top Fix
Upgrade Version
Upgrade to version acquia/acquia_cms - 2020-11-17;acquia/acquia_cms - 2020-11-05;acquia/acquia_cms - 2020-10-11;studio509/project-default - no_fix;drupal/core - 8.5.6;drupal/core - 9.2.x-dev;drupal/core - 8.6.6;drupal/core - 8.5.9;drupal/core - 8.9.17;drupal/core - 9.1.11;drupal/core - 9.1.13;drupal/core - 9.2.8;drupal/core - 8.8.0-alpha1;drupal/core - 9.2.13;drupal/core - 8.7.3;drupal/core - 8.5.11;drupal/core - 8.2.x-dev;drupal/core - 8.9.0-beta1;drupal/core - 8.9.20;drupal/core - 8.7.0-rc1;drupal/core - 8.7.0-alpha1;drupal/core - 9.1.0-rc2;drupal/core - 8.6.13;drupal/core - 9.3.12;drupal/core - 8.7.10;drupal/core - 9.3.7;drupal/core - 8.7.8;drupal/core - 8.6.1;drupal/core - 9.2.5;datadog/dd-trace - dev-florian/timeline;datadog/dd-trace - dev-release-1.3.0;datadog/dd-trace - dev-estringana/update-headers;datadog/dd-trace - dev-glopes/waf-telemetry;datadog/dd-trace - dev-estringana/fix-telemetry-tests;datadog/dd-trace - dev-estringana/merge-back-changes-04122023;datadog/dd-trace - dev-florian/asan-test-docs;datadog/dd-trace - dev-bob/fix-type-undef-overflow;datadog/dd-trace - dev-release-0.93.1;datadog/dd-trace - dev-alex/tests/php83;datadog/dd-trace - dev-alex/experiments/pipeline-without-jit;datadog/dd-trace - dev-levi/clippy-1.79;datadog/dd-trace - dev-glopes/appsec-log-fsync;datadog/dd-trace - dev-alex/feat/version_range_testing;datadog/dd-trace - dev-estringana/client-ip-collection-02;datadog/dd-trace - dev-estringana/add-rasp-telemetry;datadog/dd-trace - dev-anilm3/root-span-add-tag;datadog/dd-trace - dev-auto_tracing;datadog/dd-trace - dev-estringana/upgrade-to-waf-1.17;datadog/dd-trace - dev-florian/prof-correctness;datadog/dd-trace - dev-alex/fix/testAllTypesAreTested-Jan17;datadog/dd-trace - dev-ddyurchenko/fix-gitlab-on-changes-runs;datadog/dd-trace - dev-span-generator;datadog/dd-trace - dev-bob/always-separate;datadog/dd-trace - dev-luc/crashtracker-fix-use-after-free;datadog/dd-trace - dev-levi/breakdown;datadog/dd-trace - dev-bob/cli-default;datadog/dd-trace - dev-bob/transpile_ops;datadog/dd-trace - dev-poc_run_webtests_using_parallelism;datadog/dd-trace - dev-bob/fix-write-cache-handlre;datadog/dd-trace - dev-florian/update-libdatadog;datadog/dd-trace - dev-alex/issue/gh2592;datadog/dd-trace - dev-bob/cleanup-asan-makefile;datadog/dd-trace - dev-conti/enable-service-naming-test-agent-checks;datadog/dd-trace - dev-bob/fix-catch-php-7.0;datadog/dd-trace - dev-fix-1544;datadog/dd-trace - dev-anilm3/upgrade-asm-0.14.0;datadog/dd-trace - dev-bob/fix-macos-build;datadog/dd-trace - dev-leiyks-authenticated-user-tracking;datadog/dd-trace - dev-florian/fix-xdebug-tests;datadog/dd-trace - dev-bob/fix-empty-array-msgpack;datadog/dd-trace - dev-bob/keep-DDTraceStamp;datadog/dd-trace - dev-anilm3/unit-test-appsec-ci;datadog/dd-trace - dev-bob/add-memcached-php8;datadog/dd-trace - dev-levi/fix-libdatadog;datadog/dd-trace - dev-alex/config/128-bit;datadog/dd-trace - dev-bob/rename-service-propagation;datadog/dd-trace - dev-alex/remove/env_api;datadog/dd-trace - dev-estringana/automated-user-events-tracking;datadog/dd-trace - dev-bob/fibers;datadog/dd-trace - dev-bob/init-hook-config-early;datadog/dd-trace - dev-bob/integration-set-error;datadog/dd-trace - dev-florian/ci-v3;datadog/dd-trace - dev-bob/fix-rust;datadog/dd-trace - dev-alex/tmp/coverage-test;datadog/dd-trace - dev-robertomonteromiguel/update_parametric_tests_launcher;datadog/dd-trace - dev-levi/call_user_func;datadog/dd-trace - dev-bob/reduce-span-memory-overhead;datadog/dd-trace - dev-labbati/ubuntu14-ci;datadog/dd-trace - dev-luc/ssi-package-remove-debug;datadog/dd-trace - dev-florian/correctness-tests;datadog/dd-trace - dev-levi/unused-old-components;datadog/dd-trace - dev-bob/priority-sampling;datadog/dd-trace - dev-bob/override-args;datadog/dd-trace - dev-alex/fix/retval-laminas-setError;datadog/dd-trace - dev-bob/live-debugger;datadog/dd-trace - dev-estringana/fix-appsec-tests;datadog/dd-trace - dev-florian/cleanup;datadog/dd-trace - dev-bob/dropped-spans-have-negative-duration;datadog/dd-trace - dev-bob/try-laravel-less-false-positives;datadog/dd-trace - dev-alex/feature/logs-correlation;datadog/dd-trace - dev-bob/fix-language-tests;datadog/dd-trace - dev-estringana/adapt-installer-to-remote-config;datadog/dd-trace - dev-bob/tmpdir-not-writable;datadog/dd-trace - dev-florian/datadog-setup-softfail;datadog/dd-trace - dev-alex/artifact/debug-agent;datadog/dd-trace - dev-alex/bump-config-entries;datadog/dd-trace - dev-bob/no-lambda-sidecar;datadog/dd-trace - dev-alex/fix/opcache-bench;datadog/dd-trace - dev-gitlab-after-release;datadog/dd-trace - dev-alex/docs/upgrade-1.0;datadog/dd-trace - dev-alex/otel/perf-two;datadog/dd-trace - dev-florian/fix-flaky-exception-correctness;datadog/dd-trace - dev-florian/fix-allocation-profiling-triggering-wrong-samples;datadog/dd-trace - dev-release-1.0.0beta1;datadog/dd-trace - dev-florian/fiber-in-timeline;datadog/dd-trace - dev-florian/exception-profiling;datadog/dd-trace - dev-florian/make-sampling-distance-configurable;datadog/dd-trace - dev-levi/wordpress;datadog/dd-trace - dev-anilm3/propagate-env-to-sidecar;datadog/dd-trace - dev-release-0.94.0;datadog/dd-trace - dev-alex/apms/11292;datadog/dd-trace - dev-bob/interceptor;datadog/dd-trace - dev-alex/perf/otel-three;datadog/dd-trace - dev-bob/fix-profiler-zts;datadog/dd-trace - dev-florian/allocation-profiling-with-jit-on-fixed-versions;datadog/dd-trace - dev-krakjoe/bgs-fault;datadog/dd-trace - dev-luc/debug-frankenphp-memleak;datadog/dd-trace - dev-alex/fix/gh2765;datadog/dd-trace - dev-alex/chore/codeowners-idm;datadog/dd-trace - dev-pierre/yii;datadog/dd-trace - dev-bob/log-deferred-integration-load;datadog/dd-trace - dev-alex/test/debug-log-span-limit-hit;datadog/dd-trace - dev-florian/gh-release-upload;datadog/dd-trace - dev-alex/feat/nested-metrics-array;datadog/dd-trace - dev-alex/issue/gh2427-fourth;datadog/dd-trace - dev-mcculls/otel-env-var-metric-tag-update;datadog/dd-trace - dev-overhead-backup;datadog/dd-trace - dev-brettlangdon-patch-1;datadog/dd-trace - dev-florian/enable-allocation-profiling-in-randomized-tests;datadog/dd-trace - dev-pierre/milestone;datadog/dd-trace - dev-estringana/trim-crlf-on-version-file;datadog/dd-trace - dev-bob/build-improvements;datadog/dd-trace - dev-bob/merge_span_object;datadog/dd-trace - dev-bob/implement-set_distributed_tracing_context;datadog/dd-trace - dev-bob/relative-ext-path;datadog/dd-trace - dev-tmp/build/version-no-include;datadog/dd-trace - dev-bob/agent_host-ipv6;datadog/dd-trace - dev-levi-and-florian/fix-generator-create-crash;datadog/dd-trace - dev-release-1.1.0;datadog/dd-trace - dev-alex/fix/GH-2869;datadog/dd-trace - dev-levi/shrink-panic-unwind;datadog/dd-trace - dev-bob/remove-zai-sapi-from-config.m4;datadog/dd-trace - dev-florian/add-missing-timestamp-for-eval;datadog/dd-trace - dev-bob/strip-query-string-from-http-url;datadog/dd-trace - dev-luc/loader-version;datadog/dd-trace - dev-alex/bench/flaky-incr-interations;datadog/dd-trace - dev-florian/io-profiling;datadog/dd-trace - dev-pierre/update-labeller;datadog/dd-trace - dev-bob/fix-drop-inf-loop;datadog/dd-trace - dev-levi/php-8.3.0rc6;datadog/dd-trace - dev-bob/fix-asan-leak;datadog/dd-trace - dev-landerson/trigger-reliability;datadog/dd-trace - dev-alex/fix/exception-4xx-root-span;datadog/dd-trace - dev-bob/ddtrace-stream-wrapper;datadog/dd-trace - dev-pierre/fix-build;datadog/dd-trace - dev-glopes/rev-static-tls-test;datadog/dd-trace - dev-bob/update-es-integration;datadog/dd-trace - dev-release-0.98.1;datadog/dd-trace - dev-conti/test-test-agent-new-forwarding;datadog/dd-trace - dev-levi/packed;datadog/dd-trace - dev-luc/fix-too-long-with-no-output;datadog/dd-trace - dev-bob/decision-manager-hash;datadog/dd-trace - dev-bob/revert-sidecar-tracing-default;datadog/dd-trace - dev-bob/exception-spans-php5;datadog/dd-trace - dev-cbeauchesne/systemtests-python-3.9;datadog/dd-trace - dev-alex/feat/ini-setup;datadog/dd-trace - dev-alex/experiments/remove-log-line;datadog/dd-trace - dev-bob/micro-optimize-shall_log;datadog/dd-trace - dev-estringana/amend-wording-on-uninstall;datadog/dd-trace - dev-levi/fargate-1.4;datadog/dd-trace - dev-luc/test-stability-1;datadog/dd-trace - dev-labbati/faster-randomized;datadog/dd-trace - dev-bob/odbc-driver;datadog/dd-trace - dev-conti/system-tests-aws-credentials;datadog/dd-trace - dev-levi/forking;datadog/dd-trace - dev-bob/better-override-args-check;datadog/dd-trace - dev-release-1.7.0;datadog/dd-trace - dev-alex/test/laravel-9x-10x;datadog/dd-trace - dev-alex/fix/exec;datadog/dd-trace - dev-bob/fix-in-tree-build;datadog/dd-trace - dev-bob/run-internal-stress-test-ci;datadog/dd-trace - dev-bob/fix-tags-memory-leak;datadog/dd-trace - dev-ddyurchenko/pr-level-benchmarks-json;datadog/dd-trace - dev-alex/feat/remap-otel-status-code;datadog/dd-trace - dev-bob/hash-config;datadog/dd-trace - dev-florian/php-83;datadog/dd-trace - dev-pmartinez/dont-rewrite-version-files;datadog/dd-trace - dev-sammyk/buster-shared-7.4;datadog/dd-trace - dev-bob/target-in-flush-debug;datadog/dd-trace - dev-sammyk/fargate-1.4;datadog/dd-trace - dev-release-0.93.0;datadog/dd-trace - dev-alex/tests/remove-version-openai-child;datadog/dd-trace - dev-alex/bench/no-sidecar;datadog/dd-trace - dev-levi/libdatadog-v10;datadog/dd-trace - dev-bob/fast-dep-parse;datadog/dd-trace - dev-installer-no-version;datadog/dd-trace - dev-luc/fix-verify-alpine-latest;datadog/dd-trace - dev-bob/fix-preload-crash;datadog/dd-trace - dev-luc/release-1.2.0;datadog/dd-trace - dev-estringana/client-ip-collection;datadog/dd-trace - dev-dev;datadog/dd-trace - dev-alex/experiments/os;datadog/dd-trace - dev-alex/fix/composer-update-no-audit;datadog/dd-trace - dev-levi/bindgen;datadog/dd-trace - dev-bob/fixhasthis;datadog/dd-trace - dev-alex/fix/packageupdater-failure-dir-null;datadog/dd-trace - dev-alpine-cmake-version;datadog/dd-trace - dev-florian/version-bump;datadog/dd-trace - dev-bob/fix-invalid-regex;datadog/dd-trace - dev-florian/fix-use-zend-alloc-0;datadog/dd-trace - dev-levi/defer-integrations;datadog/dd-trace - dev-bob/128bit-tid;datadog/dd-trace - no_fix;datadog/dd-trace - dev-bob/fix-src-inclusion;datadog/dd-trace - dev-levi/tidy-components;datadog/dd-trace - dev-alex/fix/amqp-parameters-order;datadog/dd-trace - dev-alex/fix/installer-tests;datadog/dd-trace - dev-alex/integration/laminas;datadog/dd-trace - dev-alex/APMS-14231_slim-4-root-span-name;datadog/dd-trace - dev-glopes/exec-integration;datadog/dd-trace - dev-alex/experiments/average-diff;datadog/dd-trace - dev-anilm3/helper-fuzzer-tests;datadog/dd-trace - dev-levi/document-llvm;datadog/dd-trace - dev-florian/ga-allocation-profiling;datadog/dd-trace - dev-alex/fix/symfony-flex-version;datadog/dd-trace - dev-estringana/fix-appsec-lint;datadog/dd-trace - dev-levi/numbers-in-pprof;datadog/dd-trace - dev-florian/notify-correctness;datadog/dd-trace - dev-alex/docs/remove-pre-beta;datadog/dd-trace - dev-bob/fix-fast-ret-exception;datadog/dd-trace - dev-revert-320-ext/unchecked-tracing;datadog/dd-trace - dev-alex/fix/laravel-loading;datadog/dd-trace - dev-glopes/more-wording-setup;datadog/dd-trace - dev-bob/trampoline-hook;datadog/dd-trace - dev-florian/fix-tests;datadog/dd-trace - dev-bob/fix-2030;datadog/dd-trace - dev-alex/fix/draft-pr-supported-versions;datadog/dd-trace - dev-florian/bump-crate-versions;datadog/dd-trace - dev-levi/wall-enabled;datadog/dd-trace - dev-pierre/labelling;datadog/dd-trace - dev-bob/unix-domain-sockets;datadog/dd-trace - dev-bob/xfail-http2-curl-tests;datadog/dd-trace - dev-estringana/add-automated-login-events-to-wordpress;datadog/dd-trace - dev-bob/_dd.origin;datadog/dd-trace - dev-alex/feature/peer.service;datadog/dd-trace - dev-levi/stack-sample;datadog/dd-trace - dev-labbati/resource-class-74-nginx;datadog/dd-trace - dev-alex/GH-3097_predis-service;datadog/dd-trace - dev-levi/fatal-errors;datadog/dd-trace - dev-alex/experiments/web-bench-warmups;datadog/dd-trace - dev-estringana/add-http.route-to-laravel;datadog/dd-trace - dev-estringana/standalone-asm;datadog/dd-trace - dev-bob/auto-package.xml;datadog/dd-trace - dev-xdebug-sigfpe;datadog/dd-trace - dev-pierre/test-agent;datadog/dd-trace - dev-release-0.92.2;datadog/dd-trace - dev-release-0.97.0;datadog/dd-trace - dev-bob/sync-flush;datadog/dd-trace - dev-bob/flaky-8.3-test;datadog/dd-trace - dev-luc/pecl-package.xml;datadog/dd-trace - dev-levi/log;datadog/dd-trace - dev-zai/clashes;datadog/dd-trace - dev-bob/shuttdown-opcode-handlers;datadog/dd-trace - dev-florian/run-benchmarks-on-every-pr;datadog/dd-trace - dev-alex/test/generate-wp-snapshots;datadog/dd-trace - dev-ext/interface-methods;datadog/dd-trace - dev-bob/simplify-and-fix-calls;datadog/dd-trace - dev-master;datadog/dd-trace - dev-alex/style/swoole-laravel-request;datadog/dd-trace - dev-florian/timeline-eval;datadog/dd-trace - dev-pierre/bits;datadog/dd-trace - dev-florian/poc-io-profiling;datadog/dd-trace - dev-estringana/fix-backtrace-8.4;datadog/dd-trace - dev-alex/misc/laravel-defered-loading;datadog/dd-trace - dev-update-supported-versions;datadog/dd-trace - dev-levi/tea;datadog/dd-trace - dev-bob/APMPHP-611-remove-limited-calls;datadog/dd-trace - dev-lv/fix-compilation-macos;datadog/dd-trace - dev-bob/fix-setError-docblock;datadog/dd-trace - dev-khanayan123/config-consistency;drupal/drupal - 8.7.0-alpha1;drupal/drupal - 8.1.0-rc1;drupal/drupal - 8.3.0-rc2;drupal/drupal - 8.0.0-beta2;drupal/drupal - 8.6.x-dev;drupal/drupal - 8.4.1;drupal/drupal - 8.6.7;drupal/drupal - 8.2.1;drupal/drupal - 8.3.0-beta1;drupal/drupal - 8.3.6;drupal/drupal - 8.5.13;drupal/drupal - 8.1.1;drupal/drupal - 8.1.8;drupal/drupal - 8.0.0;drupal/drupal - 8.5.10;drupal/drupal - 8.5.3;drupal/drupal - 8.4.6;drupal/drupal - 8.3.1;drupal/drupal - 8.6.13;drupal/drupal - 8.2.6;drupal/drupal - 8.7.8;drupal/drupal - 8.0.1;drupal/drupal - 9.3.x-dev;drupal/drupal - 8.3.3;drupal/drupal - 10.0.0-alpha2;drupal/drupal - 8.8.0-alpha1;drupal/drupal - 8.5.0-beta1;drupal/drupal - 8.4.3;drupal/drupal - 8.5.15;drupal/drupal - 9.3.12;drupal/drupal - 8.6.0-beta1;drupal/drupal - 8.0.0-rc2;drupal/drupal - 9.2.x-dev;drupal/drupal - 9.2.18;drupal/drupal - 8.6.3;drupal/drupal - 8.5.6;cristiroma/drupal-boilerplate-8 - no_fix;signalfx/signalfx-tracing - dev-dd-sync-2022-06-v2;signalfx/signalfx-tracing - dev-uint64;signalfx/signalfx-tracing - dev-dependabot/npm_and_yarn/dockerfiles/testing-environment/Wordpress5/app/wp-content/themes/twentynineteen/shell-quote-1.7.4;signalfx/signalfx-tracing - dev-flands/language;signalfx/signalfx-tracing - dev-capture-req-headers;redactivemedia/redactive-drupal8-platform - 8.8.0;withadresden/superdrupal - no_fix;greg-1-anderson/drupal-core - no_fix;drupal/core-file-cache - 8.1.0;hechoendrupal/drupal - no_fix;birlasoft/drupal-cms - no_fix;openwebapp/openwebapp - no_fix;drupal/core-dev - 8.8.0-beta1;native-network/example-open-social-composer - dev-dependabot/npm_and_yarn/web/libraries/diff/ini-1.3.7;native-network/example-open-social-composer - no_fix;justsomeguy/radiofreenetwork - dev-feature/steve/drupal-cms-1.0;drupal/core-vendor-hardening - 8.8.0-alpha1;lexhouk/d8 - 0.1.0.12;drupal/core-dependency-injection - 8.0.0-rc1;drupal/core-dependency-injection - 8.0.0-beta15;chmez/d8 - 0.1.0.12;drupal/core-render - 8.1.0;greg-1-anderson/core - no_fix;webflo/drupal - no_fix;drupal/core-dev-pinned - 8.8.0-beta1;vijaycs85/coverage-report - no_fix;vijaycs85/coverage-report - 8.0-alpha2;drupal/core-assertion - 8.1.0;drupal/core-http-foundation - 8.1.0
CVSS v3.1
| Base Score: |
|
|---|---|
| Attack Vector (AV): | NETWORK |
| Attack Complexity (AC): | HIGH |
| Privileges Required (PR): | NONE |
| User Interaction (UI): | NONE |
| Scope (S): | UNCHANGED |
| Confidentiality (C): | NONE |
| Integrity (I): | HIGH |
| Availability (A): | NONE |