CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-Site Request Forgery CSRF vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open Social: from 0.0.0 before 12.3.14, from 12.4.0 before 12.4.13...

8.8CVSS0.00094EPSS

Exploits0References1

CVE•added 2025/06/26 1:32 p.m.•17 views

CVE-2025-48921

CVE-2025-48921 concerns a Cross-Site Request Forgery (CSRF) vulnerability in the Drupal Open Social distribution. Affected versions are Open Social 0.0.0–12.3.13 and 12.4.0–12.4.12. The root cause is inadequate CSRF protection on certain routes, which could allow an attacker to trick authenticate...

8.8CVSS7.2AI score0.00094EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/06/26 1:32 p.m.•7 views

CVE-2025-48921 Open Social - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2025-079

Cross-Site Request Forgery CSRF vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open Social: from 0.0.0 before 12.3.14, from 12.4.0 before 12.4.13...

7.2AI score0.00094EPSS

Exploits0References1

CNNVD•added 2025/06/26 12:0 a.m.•4 views

Drupal Open Social 安全漏洞

Drupal Open Social is a Drupal-based social networking platform solution from the Drupal community designed to provide a complete social networking capability for businesses, organizations or communities. A security vulnerability exists in Drupal Open Social versions prior to 12.3.14 and versions...

8.8CVSS6.5AI score0.00094EPSS

Exploits0References1

RedhatCVE•added 2025/04/02 11:2 p.m.•17 views

CVE-2025-31686

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

7.2AI score0.00388EPSS

Exploits0References3

RedhatCVE•added 2025/04/02 10:55 p.m.•13 views

CVE-2025-31685

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

7.2AI score0.00374EPSS

Exploits0References3

OSV•added 2025/04/01 12:30 a.m.•4 views

GHSA-GF72-H4CP-WCM4 Drupal Open Social Missing Authorization vulnerability

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing. This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

9.1CVSS7.1AI score0.00374EPSS

Exploits0References5

Github Security Blog•added 2025/04/01 12:30 a.m.•10 views

Drupal Open Social Missing Authorization vulnerability

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing. This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

9.1CVSS7.1AI score0.00374EPSS

Exploits0References5Affected Software1

Github Security Blog•added 2025/04/01 12:30 a.m.•8 views

Drupal Open Social Missing Authorization vulnerability

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing. This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

8.1CVSS7.1AI score0.00388EPSS

Exploits0References5Affected Software1

OSV•added 2025/04/01 12:30 a.m.•5 views

GHSA-M9W8-WXVP-C9GV Drupal Open Social Missing Authorization vulnerability

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing. This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

9.2CVSS7.1AI score0.00388EPSS

Exploits0References5

NVD•added 2025/03/31 10:15 p.m.•11 views

CVE-2025-31685

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

9.1CVSS0.00374EPSS

Exploits0References1

NVD•added 2025/03/31 10:15 p.m.•11 views

CVE-2025-31686

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

8.1CVSS0.00388EPSS

Exploits0References1

OSV•added 2025/03/31 10:15 p.m.•5 views

CVE-2025-31685

Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10...

9.1CVSS5.8AI score

Exploits0References1

CVE•added 2025/03/31 9:44 p.m.•61 views

CVE-2025-31686

CVE-2025-31686 concerns Drupal Open Social. Multiple connected sources confirm a Missing Authorization vulnerability allowing Forceful Browsing in Open Social variants: 0.0.0…12.3.10 and 12.4.0…12.4.9. Root cause is lack of authorization checks enabling access to restricted resources. Impact desc...

8.1CVSS6.6AI score0.00388EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by