CNNVD-202506-1778 Information

CNNVD ID

CNNVD-202506-1778

Related CVE

CVE-2025-48916

• CNNVD Published: 2025-06-13

Description (Chinese)

Drupal Bookable Calendar是Drupal社区的一款日历插件。 Drupal Bookable Calendar 2.2.13之前版本存在安全漏洞，该漏洞源于缺少授权，可能导致强制浏览。

Description (English)

Drupal Bookable Calendar is a calendar plugin for the Drupal community. There was a security loophole in the previous version of Drupal Bookable Calendar 2.2.13, which stemmed from a lack of authorization and could lead to forced browsing.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2025-06-13

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2025-070 https://vigilance.fr/vulnerability/Drupal-Bookable-Calendar-information-disclosure-via-View-Booking-47293

Patch

https://www.drupal.org/project/bookable_calendar/releases/2.2.13