CNNVD-202507-1192 Information

CNNVD ID

CNNVD-202507-1192

Related CVE

CVE-2025-7031

• CNNVD Published: 2025-07-08

Description (Chinese)

Drupal Config Pages Viewer是Drupal社区的一个配置查看软件。 Drupal Config Pages Viewer 1.0.4之前版本存在安全漏洞，该漏洞源于缺少关键功能身份验证，可能导致访问控制不当。

Description (English)

Drupal Config Pages Viewer is a configuration viewer for the Drupal community. There was a security gap in the previous version of Drupal Config Pages Viewer 1.4, which stemmed from the lack of critical functional identification, which could lead to inappropriate access controls.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2025-07-08

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2025-086 https://vigilance.fr/vulnerability/Drupal-Config-Pages-Viewer-information-disclosure-via-config-pages-47589

Patch

https://www.drupal.org/sa-contrib-2025-086