CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Twilio Project: >> Twilio Security Vulnerabilities

CVE-2014-9023

The Twilio module 7.x-1.x before 7.x-1.9 for Drupal does not properly restrict access to the Twilio administration pages, which allows remote authenticated users to read and modify authentication tokens by leveraging the "access administration pages" Drupal permission.

CVSS Score

5.5

EPSS Score

0.002

Published

2014-11-20

Page 1

Vulnerabilities

Vulnerable Software

Twilio Project: >> Twilio Security Vulnerabilities

Products

Pricing

Contact Us