CVE-2020-13663

Cross Site Request Forgery vulnerability in Drupal Core Form API does not properly handle certain form input from cross-site requests, which can lead to other vulnerabilities.

We have discovered 137,990 live websites that are affected by CVE-2020-13663.

Test my site



Affected Software

Product  Drupal
Category Content Management System
Vulnerable Domains137,990 live websites (54.93% of Drupal install base)
Vulnerable Versions
  • from 7 before 7.72
  • from 8.8 before 8.8.8
  • from 8.9 before 8.9.1
  • from 9 before 9.0.1
Vulnerable Versions Count17 versions ( 5.57% of all versions)



Details

  • Published - Jun 11, 2021
  • Updated - Aug 4, 2024

CVE-2020-13663 usage by Country

United States44,594 websites


Germany15,205 websites
Russia11,852 websites
France10,622 websites
Belgium4,357 websites
GB4,056 websites
Netherlands3,859 websites
Italy3,328 websites
Spain2,677 websites
Hungary2,523 websites

CVE-2020-13663 usage by TLD

.com36,819 websites
.org12,500 websites
.ru9,738 websites
.de8,481 websites
.fr5,025 websites
.be4,705 websites
.edu4,332 websites
.net3,367 websites
.nl3,007 websites
.it2,963 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2020-13663

Top websites that are affected by CVE-2020-13663. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
***.**.uk United States***
******.org United States***
***.org United States*,***
***.org United States*,***
********.gov United States*,***
***.**.gov United States*,***
******.edu United States*,***
***.gov United States*,***
*****.com United States*,***
****.org United States*,***
See full domain list

FAQ

A total of 137,990 websites have been identified as vulnerable to CVE-2020-13663, discovered through global website indexing conducted by WebTechSurvey.
Drupal is susceptible to CVE-2020-13663 vulnerability.
Drupal versions before 9.0.1 are vulnerable to CVE-2020-13663.
Version 9.0.1 of Drupal addresses the CVE-2020-13663 security vulnerability.