CVE-2025-31688: Drupal Configuration Split Cross-Site Request Forgery (CSRF) vulnerability
(updated )
Cross-Site Request Forgery (CSRF) vulnerability in Drupal Configuration Split allows Cross Site Request Forgery. This issue affects Configuration Split: from 0.0.0 before 1.10.0, from 2.0.0 before 2.0.2.
References
Code Behaviors & Features
Detect and mitigate CVE-2025-31688 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →