Missing Authentication for Critical Function vulnerability in Drupal AJAX Dashboard allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Dashboard: from 0.0.

Description

Missing Authentication for Critical Function vulnerability in Drupal AJAX Dashboard allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AJAX Dashboard: from 0.0.0 before 3.1.0.

Affected Products

Vendor	Product	Versions
Drupal	AJAX Dashboard	3.0.x

References

https://www.drupal.org/sa-contrib-2026-022

Related News (1 articles)

Tier C

VulDB4h ago

CVE-2026-3527 | AJAX Dashboard up to 3.0.x on Drupal missing authentication (sa-contrib-2026-022)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

CWECWE-306

Published3/26/2026

Last enriched2h agov2

Trending Score20

Source articles1

Independent1

Info Completeness7/14

Missing: cvss, epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: verified

Confidence: 100%

Version History

Last enriched 2h ago

v2Tier C2h ago

Updated vendor to Drupal, product to AJAX Dashboard, affected versions to 3.0.x, severity to CRITICAL, and corrected exploit availability to false.

vendorproductaffectedVersions

via VulDB

v13h ago

Initial creation