CVE-2025-13082
published 2025-11-18CVE-2025-13082: Drupal core - Moderately critical - Defacement - SA-CORE-2025-007 User Interface (UI) Misrepresentation of Critical Information vulnerability in Drupal Drupal…
medium4.3CVSS 3.1
AVNACLPRNUIRSUCNINAL
EPSS
0.19%
9.2th percentile
Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
User Interface (UI) Misrepresentation of Critical Information vulnerability in Drupal Drupal core allows Content Spoofing.This issue affects Drupal core: from 8.0.0 before 10.4.9, from 10.5.0 before 10.5.6, from 11.0.0 before 11.1.9, from 11.2.0 before 11.2.8.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| drupal | core | >= 10.5.0 < 10.5.6 | 10.5.6 |
| drupal | core | >= 11.0.0 < 11.1.9 | 11.1.9 |
| drupal | core | >= 11.2.0 < 11.2.8 | 11.2.8 |
| drupal | core | >= 8.0.0 < 10.4.9 | 10.4.9 |
| drupal | drupal_core | — | — |
| drupal | drupal_core | >= 10.5.0 < 10.5.6 | 10.5.6 |
| drupal | drupal_core | >= 11.0.0 < 11.1.9 | 11.1.9 |
| drupal | drupal_core | >= 11.2.0 < 11.2.8 | 11.2.8 |
| drupal | drupal_core | >= 8.0.0 < 10.4.9 | 10.4.9 |
CVSS provenance
nvdv3.14.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvelistv54.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Drupal core allows Content Spoofing
osv·2025-11-18
CVE-2025-13082 [LOW] Drupal core allows Content Spoofing
Drupal core allows Content Spoofing
User Interface (UI) Misrepresentation of Critical Information vulnerability in Drupal Drupal core allows Content Spoofing. This issue affects Drupal core: from 8.0.0 before 10.4.9, from 10.5.0 before 10.5.6, from 11.0.0 before 11.1.9, from 11.2.0 before 11.2.8.
CVEList
Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
cvelistv5·2025-11-18·CVSS 4.3
CVE-2025-13082 [MEDIUM] CWE-451 Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
User Interface (UI) Misrepresentation of Critical Information vulnerability in Drupal Drupal core allows Content Spoofing.This issue affects Drupal core: from 8.0.0 before 10.4.9, from 10.5.0 before 10.5.6, from 11.0.0 before 11.1.9, from 11.2.0 before 11.2.8.
GHSA
Drupal core allows Content Spoofing
ghsa·2025-11-18
CVE-2025-13082 [LOW] CWE-451 Drupal core allows Content Spoofing
Drupal core allows Content Spoofing
User Interface (UI) Misrepresentation of Critical Information vulnerability in Drupal Drupal core allows Content Spoofing. This issue affects Drupal core: from 8.0.0 before 10.4.9, from 10.5.0 before 10.5.6, from 11.0.0 before 11.1.9, from 11.2.0 before 11.2.8.
OSV
CVE-2025-13082: By generating and tricking a user into visiting a malicious URL, an attacker can perform site defacement
osv·2025-11-12
CVE-2025-13082 CVE-2025-13082: By generating and tricking a user into visiting a malicious URL, an attacker can perform site defacement
By generating and tricking a user into visiting a malicious URL, an attacker can perform site defacement.
The defacement is not stored and is only present when the URL has been crafted for that purpose. Only the defacement is present, so no other site content (such as branding) is rendered.
Drupal
Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
vendor_drupal·2025-11-12
CVE-2025-13082 [MEDIUM] Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
Title: Drupal core - Moderately critical - Defacement - SA-CORE-2025-007
Vulnerability Type: Defacement
Description: By generating and tricking a user into visiting a malicious URL, an attacker can perform site defacement. The defacement is not stored and is only present when the URL has been crafted for that purpose. Only the defacement is present, so no other site content (such as branding) is rendered.
Solution: Install the latest version: If you are using Drupal 10.4, update to Drupal 10.4.9 . If you are using Drupal 10.5, update to Drupal 10.5.6 . If you are using Drupal 11.1, update to Drupal 11.1.9 . If you are using Drupal 11.2, update to Drupal 11.2.8 . Drupal 11.0.x, Drupal 10.3.x, and below are end-of-life and do not receive security coverage. ( Drupal 8 and Drupal 9 have bot
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-11-18
Published