Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-x957-32v9-m7vg: Drupal Acquia DAM allows Forceful Browsing

Missing Authorization vulnerability in Drupal Acquia DAM allows Forceful Browsing. This issue affects Acquia DAM: from 0.0.0 before 1.1.5.

ghsa
Open in Source
#vulnerability#git#intel#auth

Skip to content

Navigation Menu

    • AI CODE CREATION

      • GitHub CopilotWrite better code with AI

      • GitHub SparkBuild and deploy intelligent apps

      • GitHub ModelsManage and compare prompts

      • MCP RegistryNewDiscover and integrate external tools

View all features
  • Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

Appearance settings

  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. CVE-2025-9954

Drupal Acquia DAM allows Forceful Browsing

High severity GitHub Reviewed Published Oct 30, 2025 to the GitHub Advisory Database • Updated Oct 30, 2025

Package

composer drupal/acquia_dam (Composer)

Affected versions

< 1.1.5

Description

Published to the GitHub Advisory Database

Oct 30, 2025

Last updated

Oct 30, 2025

EPSS score

ghsa: Latest News

GHSA-24v3-254g-jv85: Tuta Mail has DOM attribute and CSS injection in its Contact Viewer feature
ghsa