uses cookies to make interactions with the Company’s Websites easy and meaningful. When you visit one of the Company’s Websites,’s servers send a cookie to your computer. Standing alone, cookies do not personally identify you; they merely recognize your Web browser. Unless you choose to identify yourself to, either by responding to a promotional offer, opening an account, or filling out a Web form (such as a “Contact Us” or a “Free Trial” Web form), you remain anonymous to the Company. Please go to our privacy statement for details.


Trending CVEs for the Week of July 22nd, 2019

CVE-2019-6342 – Drupal Core Access Bypass Vulnerability


According to its self-reported version, in Drupal 8.7.4, when the experimental Workspaces module is enabled, an access bypass condition is created. 

Affected Products

  • Drupal 8.7.4

Drupal 8.7.3 and earlier, Drupal 8.6.x and earlier, and Drupal 7.x are not affected

Exploitation and Risk

Currently, we are not aware of any working exploits.


Upgrade to Drupal version 8.7.5 or later.


Drupal Security advisories

Schedule a Product Demo Today!

See how NopSec's security insights and cyber threat exposure management platform can organize your security chaos.