Drupal Block Permissions Incorrect Authorization Vulnerability Allowing Forceful Browsing

Vulnerability

A vulnerability allowing incorrect authorization in Drupal Block permissions has been identified, affecting versions 1.0.0 prior to 1.2.0. This issue enables forceful browsing by improperly managing access rights to block functionalities.

Impact

Exploitation of this vulnerability could lead to unauthorized access to block permissions, allowing users to view or interact with content or features they should not have access to.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Drupal Block Permissions Incorrect Authorization Vulnerability Allowing Forceful Browsing

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating