VYPR
Unrated severityNVD Advisory· Published Apr 9, 2025· Updated Apr 9, 2025

ECA: Event - Condition - Action - Critical - Cross site request forgery - SA-CONTRIB-2025-031

CVE-2025-3131

Description

Cross-Site Request Forgery (CSRF) vulnerability in Drupal ECA: Event - Condition - Action allows Cross Site Request Forgery.This issue affects ECA: Event - Condition - Action: from 0.0.0 before 1.1.12, from 2.0.0 before 2.0.16, from 2.1.0 before 2.1.7, from 0.0.0 before 1.2.*.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Drupal/ECAllm-create
    Range: >=0.0.0, <1.1.12 || >=2.0.0, <2.0.16 || >=2.1.0, <2.1.7 || >=0.0.0, <1.2.*
  • Drupal/ECA: Event - Condition - Actionv5
    Range: 0.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.