← Back to home
wid-sec-w-2026-1702  ·  Published 2026-05-27  ·  View on BSI CERT-Bund ↗

Drupal AlternativeCommerce (Basket): Vulnerability allows Code execution

CVSS N/A NONE

Risk Summary

Ein entfernter, anonymer Angreifer kann eine Schwachstelle im Drupal-Modul "AlternativeCommerce" (Basket) ausnutzen, um beliebigen Programmcode auszuführen.

CVEs (1)

Affected Vendors

Open Source

Affected Products (2)

Open Source · Drupal AlternativeCommerce <2.1.17
Open Source · Drupal AlternativeCommerce 2.1.17

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more