Getopensocial Open Social — known CVE vulnerabilities
Every CVE whose affected-product data names Getopensocial Open Social, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-31685 — CVSS 9.1 (critical): Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before…
CVE-2024-13241 — CVSS 9.1 (critical): Improper Authorization vulnerability in Drupal Open Social allows Collect Data from Common Resource Locations.This issue affects Open…
CVE-2025-48921 — CVSS 8.8 (high): Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request Forgery.This issue affects Open Social…
CVE-2025-31686 — CVSS 8.1 (high): Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before…
CVE-2024-13240 — CVSS 7.5 (high): Improper Access Control vulnerability in Drupal Open Social allows Collect Data from Common Resource Locations.This issue affects Open…
CVE-2024-13273 — CVSS 5.4 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Open Social allows Cross-Site…
CVE-2024-13312 — CVSS 5.3 (medium): Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 11.8.0 before…
CVE-2024-13274 — CVSS 5.3 (medium): Improper Control of Interaction Frequency vulnerability in Drupal Open Social allows Functionality Misuse.This issue affects Open Social…