Drupal RESTful Web Services Sensitive Information Exposure Vulnerability

Vulnerability

A vulnerability allowing the exposure of sensitive information through data queries has been identified in Drupal's RESTful Web Services module, specifically in versions 7.X-2.0 prior to 7.X-2.10. This issue allows for forceful browsing, potentially leading to unauthorized access to sensitive data.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.4

impact

0.6

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.4

impact

0.6

exploitability

7.6

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Drupal RESTful Web Services Sensitive Information Exposure Vulnerability

Vulnerability

Impact

Affected Products

Drupal RESTful Web Services

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating