CVE-2020-13671 - Drupal core Un-restricted Upload of File
Project:Drupal
Product:Drupal core
Date Added:2022-01-18Due Date:2022-07-18
Vulnerability Name
Drupal core Un-restricted Upload of File
Description
Improper sanitization in the extension file names is present in Drupal core.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2020-13671