Florent Torregrosa

**Name of the Vulnerable Software and Affected Versions** Drupal Entity Share versions prior to 3.13.0 **Description** An authorization issue exists in Drupal Entity Share that permits forceful browsing. This flaw potentially allows unauthorized access to resources. **Recommendations** Update Drupal Entity Share to version 3.13.0 or later.

**Name of the Vulnerable Software and Affected Versions** Matomo Analytics versions 0.0.0 through 1.23.0 **Description** The issue is a Cross-Site Request Forgery (CSRF) vulnerability in Drupal Matomo Analytics, allowing unauthorized actions to be performed on behalf of a user. **Recommendations** For versions 0.0.0 through 1.23.0, update to version 1.24.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Drupal Google Tag versions 0.0.0 through 1.7.x Drupal Google Tag versions 2.0.0 through 2.0.7 **Description** A Cross-Site Request Forgery (CSRF) issue affects the Drupal Google Tag module, allowing unauthorized actions to be performed on behalf of a user. This issue can be exploited to perform actions without the user's knowledge or consent. **Recommendations** For versions 0.0.0 through 1.7.x, update to version 1.8.0 or later. For versions 2.0.0 through 2.0.7, update to version 2.0.8 or later.