Lucene search
K

449 matches found

EUVD
EUVD
added 2026/03/26 9:31 p.m.11 views

EUVD-2026-16377

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.8AI score0.00256EPSS
Exploits0References2
NVD
NVD
added 2026/03/26 9:17 p.m.6 views

CVE-2026-4933

Incorrect Authorization vulnerability in Drupal Unpublished Node Permissions allows Forceful Browsing.This issue affects Unpublished Node Permissions: from 0.0.0 before 1.7.0...

7.5CVSS0.00232EPSS
Exploits0References1
NVD
NVD
added 2026/03/26 9:17 p.m.5 views

CVE-2026-3525

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.3CVSS0.00187EPSS
Exploits0References1
NVD
NVD
added 2026/03/26 9:17 p.m.7 views

CVE-2026-3526

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.3CVSS0.00256EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/26 8:10 p.m.10 views

CVE-2026-4933

Incorrect Authorization vulnerability in Drupal Unpublished Node Permissions allows Forceful Browsing.This issue affects Unpublished Node Permissions: from 0.0.0 before 1.7.0...

5.8AI score0.00232EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/26 8:10 p.m.2 views

CVE-2026-4933 Unpublished Node Permissions - Critical - Access bypass - SA-CONTRIB-2026-029

Incorrect Authorization vulnerability in Drupal Unpublished Node Permissions allows Forceful Browsing.This issue affects Unpublished Node Permissions: from 0.0.0 before 1.7.0...

5.9AI score0.00232EPSS
Exploits0References1
CVE
CVE
added 2026/03/26 8:2 p.m.9 views

CVE-2026-3526

CVE-2026-3526 affects the Drupal File Access Fix (deprecated) module. An incorrect authorization flaw can enable forceful browsing , potentially granting access to protected files. Affected: module versions prior to 1.2.0 . Root cause: access logic not consistently validated by the module that mo...

5.3CVSS5.8AI score0.00256EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/26 8:2 p.m.1 views

CVE-2026-3526

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.8AI score0.00256EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/26 8:2 p.m.22 views

CVE-2026-3526 File Access Fix (deprecated) - Moderately critical - Access bypass - SA-CONTRIB-2026-021

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

0.00256EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/26 8:2 p.m.2 views

CVE-2026-3525

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.8AI score0.00187EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/26 8:2 p.m.1 views

CVE-2026-3525 File Access Fix (deprecated) - Moderately critical - Access bypass - SA-CONTRIB-2026-020

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

5.9AI score0.00187EPSS
Exploits0References1
CVE
CVE
added 2026/03/26 8:2 p.m.16 views

CVE-2026-3525

The CVE-2026-3525 issue affects Drupal File Access Fix (deprecated) prior to version 1.2.0. The root cause is an incorrect authorization check that enables forceful browsing, potentially permitting access to sensitive files or resources. Red Hat and ENISA entries describe an improper file access ...

5.3CVSS5.8AI score0.00187EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/26 8:2 p.m.22 views

CVE-2026-3525 File Access Fix (deprecated) - Moderately critical - Access bypass - SA-CONTRIB-2026-020

Incorrect Authorization vulnerability in Drupal File Access Fix deprecated allows Forceful Browsing.This issue affects File Access Fix deprecated: from 0.0.0 before 1.2.0...

0.00187EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 5:3 p.m.3 views

CVE-2026-3210

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This issue affects Material Icons: from 0.0.0 before 2.0.4...

5.3CVSS5.8AI score0.00223EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.3 views

EUVD-2026-15465

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This issue affects Material Icons: from 0.0.0 before 2.0.4...

6.5CVSS5.8AI score0.00223EPSS
Exploits0References2
NVD
NVD
added 2026/03/25 4:16 p.m.5 views

CVE-2026-3210

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This issue affects Material Icons: from 0.0.0 before 2.0.4...

5.3CVSS0.00223EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 3:21 p.m.2 views

CVE-2026-3210 Material Icons - Moderately critical - Access bypass - SA-CONTRIB-2026-011

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This issue affects Material Icons: from 0.0.0 before 2.0.4...

5.8AI score0.00223EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 3:21 p.m.12 views

CVE-2026-3210

CVE-2026-3210 relates to an Incorrect Authorization vulnerability in the Drupal Material Icons module, allowing forceful browsing. Affected software: Drupal Material Icons versions prior to 2.0.4. Root cause: insufficiently restricted permissions on CKEditor-related routes (dialog and autocomplet...

5.3CVSS5.8AI score0.00223EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/25 3:21 p.m.23 views

CVE-2026-3210 Material Icons - Moderately critical - Access bypass - SA-CONTRIB-2026-011

Incorrect Authorization vulnerability in Drupal Material Icons allows Forceful Browsing.This issue affects Material Icons: from 0.0.0 before 2.0.4...

0.00223EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.5 views

PT-2026-28676

Name of the Vulnerable Software and Affected Versions Drupal versions prior to 1.7.0 Description An incorrect authorization issue exists in Drupal’s Unpublished Node Permissions, allowing forceful browsing. The problem relates to inconsistent access control for unpublished translated nodes. The...

5.9AI score0.00232EPSS
Exploits0References4
Rows per page
Query Builder