WordPress and Drupal Security Advisories

Published on August 20, 2015

I wanted a convenient place to reference the latest WordPress and Drupal Security Advisories, so I added the WP RSS Aggregator and then added both the WordPress Security Advisories and Drupal Security Advisories RSS feeds.

WordPress Security Advisories

WordPress 6.0.3 Security Release
Source: Wordpress Security Advisories Published on 2022-10-17
Dropping security updates for WordPress versions 3.7 through 4.0
Source: Wordpress Security Advisories Published on 2022-09-07
WordPress 6.0.2 Security and Maintenance Release
Source: Wordpress Security Advisories Published on 2022-08-30
WordPress 5.9.2 Security and Maintenance Release
Source: Wordpress Security Advisories Published on 2022-03-11
WordPress 5.8.3 Security Release
Source: Wordpress Security Advisories Published on 2022-01-06
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 3.0
Source: Microsoft Security Alerts Published on 2018-01-09
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-12-12
4038556 - Guidance for securing applications that host the WebBrowser Control - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-08-08
4033453 - Vulnerability in Azure AD Connect Could Allow Elevation of Privilege - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-27
4025685 - Guidance related to June 2017 security update release - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-13

Drupal Security Advisories

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-001
Source: Drupal Security Advisories Published on 2023-01-18
Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2022-016
Source: Drupal Security Advisories Published on 2022-09-28
Drupal core - Moderately critical - Multiple vulnerabilities - SA-CORE-2022-015
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Third-party libraries - SA-CORE-2022-011
Source: Drupal Security Advisories Published on 2022-06-10
Drupal core - Moderately critical - Third-party libraries - SA-CORE-2022-010
Source: Drupal Security Advisories Published on 2022-05-25
Drupal core - Moderately critical - Access bypass - SA-CORE-2022-009
Source: Drupal Security Advisories Published on 2022-04-20
Drupal core - Moderately critical - Improper input validation - SA-CORE-2022-008
Source: Drupal Security Advisories Published on 2022-04-20
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 3.0
Source: Microsoft Security Alerts Published on 2018-01-09
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-12-12
4038556 - Guidance for securing applications that host the WebBrowser Control - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-08-08
4033453 - Vulnerability in Azure AD Connect Could Allow Elevation of Privilege - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-27
4025685 - Guidance related to June 2017 security update release - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-13

Microsoft Security Advisories

Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-001
Source: Drupal Security Advisories Published on 2023-01-18
WordPress 6.0.3 Security Release
Source: Wordpress Security Advisories Published on 2022-10-17
Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2022-016
Source: Drupal Security Advisories Published on 2022-09-28
Dropping security updates for WordPress versions 3.7 through 4.0
Source: Wordpress Security Advisories Published on 2022-09-07
WordPress 6.0.2 Security and Maintenance Release
Source: Wordpress Security Advisories Published on 2022-08-30
Drupal core - Moderately critical - Multiple vulnerabilities - SA-CORE-2022-015
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Third-party libraries - SA-CORE-2022-011
Source: Drupal Security Advisories Published on 2022-06-10
Drupal core - Moderately critical - Third-party libraries - SA-CORE-2022-010
Source: Drupal Security Advisories Published on 2022-05-25
Drupal core - Moderately critical - Access bypass - SA-CORE-2022-009
Source: Drupal Security Advisories Published on 2022-04-20
Drupal core - Moderately critical - Improper input validation - SA-CORE-2022-008
Source: Drupal Security Advisories Published on 2022-04-20
WordPress 5.9.2 Security and Maintenance Release
Source: Wordpress Security Advisories Published on 2022-03-11
WordPress 5.8.3 Security Release
Source: Wordpress Security Advisories Published on 2022-01-06

Other Links:

Cold Fusion Security Advisories

Java Security Advisories

PHP Security Advisories

MySQL Security Advisories

Amazon AWS Security Advisories

Mozilla Security Advisories

VMWare Security Advisories