EPSS
Percentile
46.6%
Drupal is vulnerable to access restriction bypass. The sites with JSON:API module enabled bypass the restriction of access to certain content.
www.drupal.org/sa-core-2021-010