HTTP Client Manager - Less critical - Information disclosure - SA-CONTRIB-2025-126

Http Client Manager introduces a new Guzzle based plugin which allows you to manage HTTP clients using Guzzle Service Descriptions via YAML, JSON or PHP files, in a simple and efficient way. The modules allows administrators to configure HTTP requests as part of Event Condition Action ECA...

EUVD-2025-10539

Malicious code in bioql PyPI...

CVE-2025-3131

Cross-Site Request Forgery CSRF vulnerability in Drupal ECA: Event - Condition - Action allows Cross Site Request Forgery.This issue affects ECA: Event - Condition - Action: from 0.0.0 before 1.1.12, from 2.0.0 before 2.0.16, from 2.1.0 before 2.1.7, from 0.0.0 before 1.2...

Drupal ECA: Event - Condition - Action module < 1.1.12,2.0.0-2.0.15,2.1.0-2.1.6,1.2 - Unauthenticated Cross Site Request Forgery (CSRF) vulnerability

Drupal ECA: Event - Condition - Action module 1.1.12,2.0.0-2.0.15,2.1.0-2.1.6,1.2 - Unauthenticated Cross Site Request Forgery CSRF vulnerability discovered by Juraj Nemec poker10 in WordPress Module ECA: Event - Condition - Action versions 1.1.12,2.0.0-2.0.15,2.1.0-2.1.6,1.2...

PT-2025-15835 · Unknown · Eca: Event - Condition - Action

Name of the Vulnerable Software and Affected Versions: ECA: Event - Condition - Action versions 0.0.0 through 1.1.12 ECA: Event - Condition - Action versions 2.0.0 through 2.0.16 ECA: Event - Condition - Action versions 2.1.0 through 2.1.7 Description: A Cross-Site Request Forgery CSRF issue...