<div dir="ltr"><div></div><div>Drupal core - Moderately critical - Multiple vulnerabilities - SA-CORE-2022-015</div><div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div>
View online: <a href="https://www.drupal.org/sa-core-2022-015" rel="noreferrer" target="_blank">https://www.drupal.org/sa-core-2022-015</a><br>
Project: Drupal core [1]<br>
Date: 2022-July-20<br>
Security risk: *Moderately critical* 11∕25<br>
AC:Complex/A:User/CI:Some/II:Some/E:Theoretical/TD:Uncommon [2]<br>
Vulnerability: Multiple vulnerabilities <br></div><div><br></div><div>Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014</div><div>
View online: <a href="https://www.drupal.org/sa-core-2022-014" rel="noreferrer" target="_blank">https://www.drupal.org/sa-core-2022-014</a>

</div><div>
Project: Drupal core [1]<br>
Date: 2022-July-20<br>
Security risk: *Critical* 15∕25<br>
AC:Basic/A:Admin/CI:All/II:All/E:Theoretical/TD:Uncommon [2]<br>
Vulnerability: Arbitrary PHP code execution</div><div><br></div><div>Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013</div><div>
View online: <a href="https://www.drupal.org/sa-core-2022-013" rel="noreferrer" target="_blank">https://www.drupal.org/sa-core-2022-013</a><br>
Project: Drupal core [1]<br>
Date: 2022-July-20<br>
Security risk: *Moderately critical* 12∕25<br>
AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Uncommon [2]<br>
Vulnerability: Access Bypass

</div><div><br></div><div>Drupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012</div><div> 
View online: <a href="https://www.drupal.org/sa-core-2022-012" rel="noreferrer" target="_blank">https://www.drupal.org/sa-core-2022-012</a><br>
Project: Drupal core [1]<br>
Date: 2022-July-20<br>
Security risk: *Moderately critical* 13∕25<br>
AC:None/A:None/CI:Some/II:None/E:Theoretical/TD:Uncommon [2]<br>
Vulnerability: Information Disclosure

<br></div><div><br></div><div>===</div><div>Computer Security Incident Response Team - CSIRT</div><div>Universidade Estadual de Campinas - Unicamp</div><div>Centro de Computacao - CCUEC</div><div>GnuPG Public Key: <a href="http://www.security.unicamp.br/security.asc" target="_blank">http://www.security.unicamp.br/security.asc</a> [^]</div><div>Contato: +55 19 3521-2289 ou INOC-DBA: 1251*830</div></div></div></div></div>