VYPR
Low severityNVD Advisory· Published Mar 31, 2025· Updated Apr 29, 2025

OAuth2 Client - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2025-013

CVE-2025-31684

Description

Cross-Site Request Forgery (CSRF) vulnerability in Drupal OAuth2 Client allows Cross Site Request Forgery.This issue affects OAuth2 Client: from 0.0.0 before 4.1.3.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
drupal/oauth2_clientPackagist
< 4.1.34.1.3

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.