Drupal Open Social Improper Authorization Vulnerability Allowing Data Collection from Common Resource Locations

Vulnerability

An improper authorization vulnerability has been identified in Drupal Open Social versions prior to 12.0.5. This vulnerability allows for unauthorized data collection from common resource locations.

Impact

Exploitation of this vulnerability could lead to unauthorized access to and collection of data from specified resource locations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

2.5

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Drupal Open Social Improper Authorization Vulnerability Allowing Data Collection from Common Resource Locations

Vulnerability

Impact

Affected Products

Drupal Open Social

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating