Security Advisory

CVE-2025-31691

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-31 21:49:42

Last updated 2025-04-29 15:20:48

Assigner drupal

State PUBLISHED

Missing Authorization vulnerability in Drupal OAuth2 Server allows Forceful Browsing.This issue affects OAuth2 Server: from 0.0.0 before 2.1.0.