CVE-2025-48013
MEDIUMQuick Node Block < 2.0.0 - Missing Authorization
Title source: ruleDescription
Missing Authorization vulnerability in Drupal Quick Node Block allows Forceful Browsing.This issue affects Quick Node Block: from 0.0.0 before 2.0.0.
References (1)
Scores
CVSS v3
5.3
EPSS
0.0007
EPSS Percentile
20.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-862
Status
published
Affected Products (2)
quick_node_block_project/quick_node_block
drupal/quick_node_block
< 2.0.0Packagist
Timeline
Published
Jun 11, 2025
Tracked Since
Feb 18, 2026