Denis Kolmerschlag

#15735of 53,632
17.2Total CVSS
Vulnerabilities · 2
High
1
Critical
1
PT-2025-13849
9.1
2025-02-12
Drupal · Open Social · CVE-2025-31685
**Name of the Vulnerable Software and Affected Versions** Open Social versions 0.0.0 through 12.3.10 Open Social versions 12.4.0 through 12.4.9 **Description** The issue is related to a Missing Authorization vulnerability in Drupal Open Social, which allows Forceful Browsing. **Recommendations** For Open Social versions 0.0.0 through 12.3.10, update to version 12.3.11 or later. For Open Social versions 12.4.0 through 12.4.9, update to version 12.4.10 or later.
PT-2025-13850
8.1
2025-02-12
Drupal · Open Social · CVE-2025-31686
**Name of the Vulnerable Software and Affected Versions** Open Social versions 0.0.0 through 12.3.10 Open Social versions 12.4.0 through 12.4.9 **Description** The issue is related to a Missing Authorization vulnerability in Drupal Open Social, which allows Forceful Browsing. **Recommendations** For Open Social versions 0.0.0 through 12.3.10, update to version 12.3.11 or later. For Open Social versions 12.4.0 through 12.4.9, update to version 12.4.10 or later.