-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security

Vulnerability Details

Registries

Custom Views

Weaknesses

Attack Patterns

Filters & Tools

Config Pages

Source -

CNA

CNA CVEs -

1

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0

Related CVEs Related Vendors Related Assigners Reports

1Vulnerabilities found

Assigner-Drupal.org

Assigner-Drupal.org

CVSS Score-7.6||HIGH

EPSS-0.04% / 10.90%

||

7 Day CHG~0.00%

Published-15 Aug, 2025 | 16:26

Updated-21 Aug, 2025 | 18:29

Rejected-Not Available

Known To Be Used In Ransomware Campaigns?-Not Available

KEV Added-Not Available

KEV Action Due Date-Not Available

Config Pages - Moderately critical - Access bypass - SA-CONTRIB-2025-093

Missing Authorization vulnerability in Drupal Config Pages allows Forceful Browsing.This issue affects Config Pages: from 0.0.0 before 2.18.0.

Action-Not Available

Vendor-config_pages_project The Drupal Association

Product-config_pages Config Pages

CWE ID-CWE-862

Missing Authorization