16 matches found
EUVD-2025-25045
Malicious code in bioql PyPI...
CVE-2025-8996
Missing Authorization vulnerability in Drupal Layout Builder Advanced Permissions allows Forceful Browsing.This issue affects Layout Builder Advanced Permissions: from 0.0.0 before 2.2.0...
CVE-2025-8996
Missing Authorization vulnerability in Drupal Layout Builder Advanced Permissions allows Forceful Browsing.This issue affects Layout Builder Advanced Permissions: from 0.0.0 before 2.2.0...
CVE-2025-8996
Missing Authorization vulnerability in Drupal Layout Builder Advanced Permissions allows Forceful Browsing.This issue affects Layout Builder Advanced Permissions: from 0.0.0 before 2.2.0...
CVE-2025-8996 Layout Builder Advanced Permissions - Moderately critical - Access bypass - SA-CONTRIB-2025-097
Missing Authorization vulnerability in Drupal Layout Builder Advanced Permissions allows Forceful Browsing.This issue affects Layout Builder Advanced Permissions: from 0.0.0 before 2.2.0...
CVE-2025-8996 Layout Builder Advanced Permissions - Moderately critical - Access bypass - SA-CONTRIB-2025-097
Missing Authorization vulnerability in Drupal Layout Builder Advanced Permissions allows Forceful Browsing.This issue affects Layout Builder Advanced Permissions: from 0.0.0 before 2.2.0...
CVE-2025-8996
CVE-2025-8996 affects Drupal Layout Builder Advanced Permissions (versions 0.0.0 through 2.1.9/2.2.0 before). The vulnerability is a Missing Authorization issue that enables forceful browsing, enabling access bypass within the affected module, as described across multiple sources (Red Hat, NVD/CV...
Drupal Layout Builder Advanced Permissions 安全漏洞
Drupal Layout Builder Advanced Permissions is a permission control extension for the Drupal community. A security vulnerability exists in Drupal Layout Builder Advanced Permissions versions prior to 2.2.0, which stems from a lack of authorization and could lead to forced browsing...
DRUPAL-CONTRIB-2025-097
The Layout Builder Advanced Permissions module enables you to have fine grained control over who can do what in editing pages built with Layout Builder. The module doesn't sufficiently control access for adding sections in the submodule. This vulnerability is mitigated by the fact that an attacke...
Drupal Layout Builder Advanced Permissions module < 2.2.1 - Authenticated Broken Access Control vulnerability
Authenticated Broken Access Control vulnerability discovered by Eelke Blok eelkeblok in WordPress Module Layout Builder Advanced Permissions versions 2.2.1...
CVE-2024-51962
A SQL injection vulnerability in ArcGIS Server allows an EDIT operation to modify column properties in a manner that could lead to SQL injection when performed by a remote authenticated user requiring elevated, non‑administrative privileges. Exploitation is restricted to users with advanced...
CVE-2024-51962
A SQL injection vulnerability in ArcGIS Server allows an EDIT operation to modify column properties in a manner that could lead to SQL injection when performed by a remote authenticated user requiring elevated, non‑administrative privileges. Exploitation is restricted to users with advanced...
Advanced permissions not respected when copying entire group folders
None...
CVE-2022-42092
Backdrop CMS 1.22.0 has Unrestricted File Upload vulnerability via 'themes' that allows attackers to Remote Code Execution. Note: Third parties dispute this and argue that advanced permissions are required...
OPENSUSE-SU-2022:0098-1 Security update for nextcloud
This update for nextcloud fixes the following issues: nextcloud was updated to 21.0.9: - CVE-2021-41239 CWE-200: user enumeration setting not obeyed in User Status API boo1196905 - CVE-2021-41241 CWE-863: groupfolders advanced permissions is not obeyed for subfolders boo1196908 - CVE-2021-41741...
CVE-2021-41241 Advanced permissions is not respected for subfolders in Nextcloud server
Nextcloud server is a self hosted system designed to provide cloud style services. The groupfolders application for Nextcloud allows sharing a folder with a group of people. In addition, it allows setting "advanced permissions" on subfolders, for example, a user could be granted access to the...