Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-47701

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Restrict route by IP allows Cross Site Request Forgery.This issue affects Restrict route by IP: from 0.0.0 before 1.3.0.

Published

2025-05-14T17:15:49.270

Last Modified

2025-06-25T15:05:18.663

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-352

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	restrict_route_by_ip_project	restrict_route_by_ip	< 1.3.0	Yes

References

https://www.drupal.org/sa-contrib-2025-047 Vendor Advisory ([email protected])