CVE-2025-31678

CVE-2025-31678: AI (Artificial Intelligence) - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-004

Vendor Drupal
Product AI (Artificial Intelligence)
Weakness CWE-862 · Missing authorization
Published March 31, 2025
Last update April 29, 2025

CVSS base score

What the vulnerability does

01Description

Missing Authorization vulnerability in Drupal AI (Artificial Intelligence) allows Forceful Browsing.This issue affects AI (Artificial Intelligence): from 0.0.0 before 1.0.3.

Key dates

02Disclosure timeline

March 31, 2025 CVE published
April 29, 2025 Record updated