exploitDog

GHSA-2mq5-fr5w-rr29

Опубликовано: 26 мар. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Server-Side Request Forgery (SSRF) vulnerability in Drupal OpenID Connect / OAuth client allows Server Side Request Forgery.This issue affects OpenID Connect / OAuth client: from 0.0.0 before 1.5.0.

Server-Side Request Forgery (SSRF) vulnerability in Drupal OpenID Connect / OAuth client allows Server Side Request Forgery.This issue affects OpenID Connect / OAuth client: from 0.0.0 before 1.5.0.

Ссылки

EPSS

Процентиль: 8%

0.0003

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2026-3530

CVSS3: 4.3

nvd

22 дня назад

Server-Side Request Forgery (SSRF) vulnerability in Drupal OpenID Connect / OAuth client allows Server Side Request Forgery.This issue affects OpenID Connect / OAuth client: from 0.0.0 before 1.5.0.

EPSS

Процентиль: 8%

0.0003

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-918