5 matches found
CVE-2025-7717
Missing Authorization vulnerability in Drupal File Download allows Forceful Browsing.This issue affects File Download: from 0.0.0 before 1.9.0, from 2.0.0 before 2.0.1...
CVE-2025-7717
CVE-2025-7717 is a Missing Authorization vulnerability in the Drupal File Download module. The issue allows forceful browsing to access protected files due to insufficient access control. Affected versions are Drupal File Download 0.0.0–1.8.9 and 2.0.0 (inclusive); versions before 1.9.0 and befor...
PT-2025-30312 · Drupal · Drupal File Download
Name of the Vulnerable Software and Affected Versions: Drupal File Download versions 0.0.0 through 1.8.9 Drupal File Download versions 2.0.0 through 2.0.0 Description: The File Download module is susceptible to a missing authorization issue, allowing for forceful browsing. Recommendations: Update...
Drupal File Download 安全漏洞
Drupal File Download is a file download plugin for the Drupal community. A security vulnerability exists in Drupal File Download versions prior to 1.9.0 and prior to 2.0.1, which stems from a lack of authorization and could lead to a forced browsing attack...
Drupal File Download module < 1.9.0,2.0.0 - Unauthenticated Broken Access Control vulnerability
Unauthenticated Broken Access Control vulnerability discovered by Willem Drupal enthousiast willempje2 in WordPress Module File Download versions 1.9.0,2.0.0...