Drupal Open Social Improper Access Control Vulnerability Allowing Data Collection from Common Resource Locations

Vulnerability

A vulnerability allowing improper access control has been identified in Drupal Open Social versions prior to 12.05. This issue enables the collection of data from common resource locations.

Impact

Exploitation of this vulnerability could lead to unauthorized data collection from specified resource locations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Drupal Open Social Improper Access Control Vulnerability Allowing Data Collection from Common Resource Locations

Vulnerability

Impact

Affected Products

Drupal Open Social

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating