goalgorilla/open_social
Packagist3 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting goalgorilla/open_socialpage 1 of 1
- CVE-2024-13274MEDIUMCVSS 5.3EG 5.3✓ Fixed in 13.0.0-alpha112025-01-09
vulnerable: 13.0.0-alpha1 ... 13.0.0-alpha9 (10 versions)
Improper Control of Interaction Frequency vulnerability in Drupal Open Social allows Functionality Misuse.This issue affects Open Social: from 0.0.0 before 12.3.8, from 12.4.0 before 12.4.5.
- CVE-2025-31685CRITICALCVSS 9.1EG 9.1✓ Fixed in 12.4.102025-03-31
vulnerable: 12.4.0 ... 12.4.9 (10 versions)
Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10.
- CVE-2025-31686HIGHCVSS 8.1EG 8.1✓ Fixed in 12.4.102025-03-31
vulnerable: 12.4.0 ... 12.4.9 (10 versions)
Missing Authorization vulnerability in Drupal Open Social allows Forceful Browsing.This issue affects Open Social: from 0.0.0 before 12.3.11, from 12.4.0 before 12.4.10.
Check whether goalgorilla/open_social is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for goalgorilla/open_social CVEs against the assets you own.
Start Free Scan →