25 matches found
GHSA-X957-32V9-M7VG Drupal Acquia DAM allows Forceful Browsing
Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing. This issue affects Acquia DAM: from 0.0.0 before 1.1.5...
EUVD-2025-36881
Drupal Acquia DAM allows Forceful Browsing...
Drupal Acquia DAM allows Forceful Browsing
Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing. This issue affects Acquia DAM: from 0.0.0 before 1.1.5...
CVE-2025-9954
Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing.This issue affects Acquia DAM: from 0.0.0 before 1.1.5...
Drupal Acquia DAM 安全漏洞
Drupal Acquia DAM is a data synchronization plugin for the Drupal community. A security vulnerability exists in Drupal Acquia DAM versions prior to 1.1.5, which stems from a lack of authorization and could lead to a forced browsing attack...
CVE-2025-9954 Acquia DAM - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-105
Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing.This issue affects Acquia DAM: from 0.0.0 before 1.1.5...
CVE-2025-9954 Acquia DAM - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-105
Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing.This issue affects Acquia DAM: from 0.0.0 before 1.1.5...
CVE-2025-9954
CVE-2025-9954 affects Drupal Acquia DAM (versions 0.0.0 up to 1.1.4). Root cause: missing authorization enabling forceful browsing of DAM assets. Impact is information disclosure and unauthorized resource access. Mitigation: update to Acquia DAM 1.1.5 or later. Multiple sources corroborate the vu...
CVE-2025-9954 Acquia DAM - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-105
Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing.This issue affects Acquia DAM: from 0.0.0 before 1.1.5...
EUVD-2024-51475
Malicious code in bioql PyPI...
DRUPAL-CONTRIB-2025-105
This module enables you to connect a Drupal site to the Acquia DAM service, which syncs media from the third party service to the site. The module doesn't sufficiently validate authorization to a list of DAM assets currently synced to the website creating an access bypass vulnerability. This...
Drupal Acquia DAM module < 1.1.5 - Unauthenticated Multiple Vulnerabilities vulnerability
Unauthenticated Multiple Vulnerabilities vulnerability discovered by Brandon Goodwin bgoodie in WordPress Module Acquia DAM versions 1.1.5...
Acquia DAM - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-105
This module enables you to connect a Drupal site to the Acquia DAM service, which syncs media from the third party service to the site. The module doesn't sufficiently validate authorization to a list of DAM assets currently synced to the website creating an access bypass vulnerability. This...
The vulnerability of Acquia DAM CMS system’s Drupal module, related to the manipulation of cross-site requests, allows attackers to perform CSRF attacks or cause service failures.
The vulnerability of Acquia DAM CMS system’s Drupal module is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack or cause service failures...
CVE-2024-13261
Cross-Site Request Forgery CSRF vulnerability in Drupal Acquia DAM allows Cross Site Request Forgery.This issue affects Acquia DAM: from 0.0.0 before 1.0.13, from 1.1.0 before 1.1.0-beta3...
CVE-2024-13261 Acquia DAM - Moderately critical - Cross Site Request Forgery, Denial of Service - SA-CONTRIB-2024-025
Cross-Site Request Forgery CSRF vulnerability in Drupal Acquia DAM allows Cross Site Request Forgery.This issue affects Acquia DAM: from 0.0.0 before 1.0.13, from 1.1.0 before 1.1.0-beta3...
CVE-2024-13261 Acquia DAM - Moderately critical - Cross Site Request Forgery, Denial of Service - SA-CONTRIB-2024-025
Cross-Site Request Forgery CSRF vulnerability in Drupal Acquia DAM allows Cross Site Request Forgery.This issue affects Acquia DAM: from 0.0.0 before 1.0.13, from 1.1.0 before 1.1.0-beta3...
CVE-2024-13261
CVE-2024-13261 is a CSRF vulnerability in the Drupal Acquia DAM module. Affected releases are Acquia DAM for Drupal: 0.0.0 up to (but not including) 1.0.13, and 1.1.0 up to (but not including) 1.1.0-beta3. The issue stems from inadequate protection to disconnect a site from DAM (as described in S...
CVE-2024-13261 Acquia DAM - Moderately critical - Cross Site Request Forgery, Denial of Service - SA-CONTRIB-2024-025
Cross-Site Request Forgery CSRF vulnerability in Drupal Acquia DAM allows Cross Site Request Forgery.This issue affects Acquia DAM: from 0.0.0 before 1.0.13, from 1.1.0 before 1.1.0-beta3...
Drupal 安全漏洞
Drupal is an open source content management system developed in the PHP language by the Drupal community. A security vulnerability exists in Drupal Acquia DAM version 1.0.13, prior to versions 1.1.0 through 1.1.0-beta3, which stems from the inclusion of a cross-site request forgery vulnerability...