Alexander Shumenko

Name of the Vulnerable Software and Affected Versions: Drupal Config Pages versions 0.0.0 through 2.17.9 Description: Missing authorization allows forceful browsing of Config Pages. Recommendations: Update to version 2.18.0 or later.

**Name of the Vulnerable Software and Affected Versions** Advanced Varnish versions 0.0.0 through 4.0.10 **Description** The issue is related to the insertion of sensitive information into sent data, which can allow forceful browsing. This can be exploited by a remote attacker to bypass security restrictions. The vulnerability is associated with insufficient protection of service data. **Recommendations** For Advanced Varnish versions 0.0.0 through 4.0.10, update to version 4.0.11 or later to resolve the issue.