VULHUB ™

The Search API module for Drupal is prone to the following security vulnerabilities: 1. An information disclosure vulnerability 2. An Cross-site scripting vulnerability 3. An access-bypass vulnerability An attacker can exploit these issues to obtain sensitive information, potentially allowing the attacker to steal cookie-based authentication credentials and to bypass security restrictions, or perform unauthorized actions; this may aid in launching further attacks. Search API 7.x-1.x versions prior to 7.x-1.18 are vulnerable.

The Search API module for Drupal is prone to the following security vulnerabilities: 1. An information disclosure vulnerability 2. An Cross-site scripting vulnerability 3. An access-bypass vulnerability An attacker can exploit these issues to obtain sensitive information, potentially allowing the attacker to steal cookie-based authentication credentials and to bypass security restrictions, or perform unauthorized actions; this may aid in launching further attacks. Search API 7.x-1.x versions prior to 7.x-1.18 are vulnerable.