WordPress and Drupal Security Advisories

Published on August 20, 2015

I wanted a convenient place to reference the latest WordPress and Drupal Security Advisories, so I added the WP RSS Aggregator and then added both the WordPress Security Advisories and Drupal Security Advisories RSS feeds.

WordPress Security Advisories

WordPress 6.4.2 Maintenance & Security Release
Source: Wordpress Security Advisories Published on 2023-12-06
Alert: WordPress Security Team Impersonation Scams
Source: Wordpress Security Advisories Published on 2023-12-04
WordPress 6.3.2 – Maintenance and Security release
Source: Wordpress Security Advisories Published on 2023-10-12
WordPress 6.2.2 Security Release
Source: Wordpress Security Advisories Published on 2023-05-20
WordPress 6.2.1 Maintenance & Security Release
Source: Wordpress Security Advisories Published on 2023-05-16
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 3.0
Source: Microsoft Security Alerts Published on 2018-01-09
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-12-12
4038556 - Guidance for securing applications that host the WebBrowser Control - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-08-08
4033453 - Vulnerability in Azure AD Connect Could Allow Elevation of Privilege - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-27
4025685 - Guidance related to June 2017 security update release - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-13

Drupal Security Advisories

Drupal core - Critical - Cache poisoning - SA-CORE-2023-006
Source: Drupal Security Advisories Published on 2023-09-20
Drupal core - Moderately critical - Access bypass - SA-CORE-2023-005
Source: Drupal Security Advisories Published on 2023-04-19
Drupal core - Moderately critical - Access bypass - SA-CORE-2023-004
Source: Drupal Security Advisories Published on 2023-03-15
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-003
Source: Drupal Security Advisories Published on 2023-03-15
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-002
Source: Drupal Security Advisories Published on 2023-03-15
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-001
Source: Drupal Security Advisories Published on 2023-01-18
Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2022-016
Source: Drupal Security Advisories Published on 2022-09-28
Drupal core - Moderately critical - Multiple vulnerabilities - SA-CORE-2022-015
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
Source: Drupal Security Advisories Published on 2022-07-20
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 3.0
Source: Microsoft Security Alerts Published on 2018-01-09
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-12-12
4038556 - Guidance for securing applications that host the WebBrowser Control - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-08-08
4033453 - Vulnerability in Azure AD Connect Could Allow Elevation of Privilege - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-27
4025685 - Guidance related to June 2017 security update release - Version: 1.0
Source: Microsoft Security Alerts Published on 2017-06-13

Microsoft Security Advisories

WordPress 6.4.2 Maintenance & Security Release
Source: Wordpress Security Advisories Published on 2023-12-06
Alert: WordPress Security Team Impersonation Scams
Source: Wordpress Security Advisories Published on 2023-12-04
WordPress 6.3.2 – Maintenance and Security release
Source: Wordpress Security Advisories Published on 2023-10-12
Drupal core - Critical - Cache poisoning - SA-CORE-2023-006
Source: Drupal Security Advisories Published on 2023-09-20
WordPress 6.2.2 Security Release
Source: Wordpress Security Advisories Published on 2023-05-20
WordPress 6.2.1 Maintenance & Security Release
Source: Wordpress Security Advisories Published on 2023-05-16
Drupal core - Moderately critical - Access bypass - SA-CORE-2023-005
Source: Drupal Security Advisories Published on 2023-04-19
Drupal core - Moderately critical - Access bypass - SA-CORE-2023-004
Source: Drupal Security Advisories Published on 2023-03-15
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-003
Source: Drupal Security Advisories Published on 2023-03-15
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-002
Source: Drupal Security Advisories Published on 2023-03-15
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2023-001
Source: Drupal Security Advisories Published on 2023-01-18
Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2022-016
Source: Drupal Security Advisories Published on 2022-09-28
Drupal core - Moderately critical - Multiple vulnerabilities - SA-CORE-2022-015
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2022-014
Source: Drupal Security Advisories Published on 2022-07-20
Drupal core - Moderately critical - Access Bypass - SA-CORE-2022-013
Source: Drupal Security Advisories Published on 2022-07-20

Other Links:

Cold Fusion Security Advisories

Java Security Advisories

PHP Security Advisories

MySQL Security Advisories

Amazon AWS Security Advisories

Mozilla Security Advisories

VMWare Security Advisories