Vulnerabilities > Rest Json Project > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-01-01 CVE-2016-20005 Incorrect Authorization vulnerability in Rest/Json Project Rest/Json
The REST/JSON project 7.x-1.x for Drupal allows user registration bypass, aka SA-CONTRIB-2016-033.
network
low complexity
rest-json-project CWE-863
critical
 9.8
9.8
2021-01-01 CVE-2016-20004 Incorrect Authorization vulnerability in Rest/Json Project Rest/Json
The REST/JSON project 7.x-1.x for Drupal allows field access bypass, aka SA-CONTRIB-2016-033.
network
low complexity
rest-json-project CWE-863
critical
 9.8
9.8
2021-01-01 CVE-2016-20002 Incorrect Authorization vulnerability in Rest/Json Project Rest/Json
The REST/JSON project 7.x-1.x for Drupal allows comment access bypass, aka SA-CONTRIB-2016-033.
network
low complexity
rest-json-project CWE-863
critical
 9.8
9.8
2021-01-01 CVE-2016-20001 Incorrect Authorization vulnerability in Rest/Json Project Rest/Json
The REST/JSON project 7.x-1.x for Drupal allows node access bypass, aka SA-CONTRIB-2016-033.
network
low complexity
rest-json-project CWE-863
critical
 9.8
9.8