RESTful Web Services – Critical – Access bypass – SA-CONTRIB-2024-019

July 4, 2025 invoker category_cve

CVE Details

Basic Information

Title RESTful Web Services – Critical – Access bypass – SA-CONTRIB-2024-019
Type cve
Published 2025-01-09T19:00:43.339Z
Modified 2025-01-10T17:02:14.839Z

Product Information

Vendor Drupal
Product RESTful Web Services
Version 7.x-2.0

CVSS Information

Base Score 0.0 ()

Affected Products

  • Drupal RESTful Web Services 7.x-2.0

Additional Information

CWE List CWE-202
Source drupal

Description

Exposure of Sensitive Information Through Data Queries vulnerability in Drupal RESTful Web Services allows Forceful Browsing.This issue affects RESTful Web Services: from 7.X-2.0 before 7.X-2.10.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.