Vulnerabilities (CVE)

Filtered by vendor Rest\/json Project Subscribe

Filtered by product Rest\/json

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-20001	1 Rest\/json Project	1 Rest\/json	2021-01-07	7.5 HIGH	9.8 CRITICAL
The REST/JSON project 7.x-1.x for Drupal allows node access bypass, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.
CVE-2016-20004	1 Rest\/json Project	1 Rest\/json	2021-01-07	7.5 HIGH	9.8 CRITICAL
The REST/JSON project 7.x-1.x for Drupal allows field access bypass, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.
CVE-2016-20005	1 Rest\/json Project	1 Rest\/json	2021-01-07	7.5 HIGH	9.8 CRITICAL
The REST/JSON project 7.x-1.x for Drupal allows user registration bypass, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.
CVE-2016-20002	1 Rest\/json Project	1 Rest\/json	2021-01-07	7.5 HIGH	9.8 CRITICAL
The REST/JSON project 7.x-1.x for Drupal allows comment access bypass, aka SA-CONTRIB-2016-033. NOTE: This project is not covered by Drupal's security advisory policy.