CVE-2025-31686

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

CVE-2025-31685

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

Drupal Open Social 安全漏洞

Drupal Open Social is a Drupal-based social networking platform solution from the Drupal community designed to provide a complete social networking capability for businesses, organizations or communities. A security vulnerability exists in Drupal Open Social versions prior to 12.3.11 and 12.4.0...

PT-2025-13849 · Drupal · Open Social

Name of the Vulnerable Software and Affected Versions: Open Social versions 0.0.0 through 12.3.10 Open Social versions 12.4.0 through 12.4.9 Description: The issue is related to a Missing Authorization vulnerability in Drupal Open Social, which allows Forceful Browsing. Recommendations: For Open...

CVE-2021-42841

CVE-2021-42841 affects Insta HMS before 12.4.10. The flaw is an XSS vulnerability due to improper validation of user-supplied input by multiple scripts, allowing a remote attacker to craft a URL that executes script in a victim’s browser within the hosting site’s context and potentially steal coo...