Twilio Project : Security Vulnerabilities, CVEs,
The Twilio module 7.x-1.x before 7.x-1.9 for Drupal does not properly restrict access to the Twilio administration pages, which allows remote authenticated users to read and modify authentication tokens by leveraging the "access administration pages" Drupal permission.
Max CVSS
5.5
EPSS Score
0.13%
Published
2014-11-20
Updated
2016-06-02
1 vulnerabilities found