CVE-2025-31481

Published: 2025-04-03T20:15Z

Last Modified: 2025-04-08T14:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. Using the Relay special node type you can bypass the configured security on an operation. This vulnerability is fixed in 4.0.22 and 3.4.17. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt