Drupal Services third party module version 7.x suffers from an access bypass vulnerability.
4fb10e61a2d487a3573e3b6b42b5848a9bd8f799a3e443482e02b6ec522f95e4
Drupal Services third party module versions 6.x and 7.x suffer from a cross site request forgery vulnerability.
32b8b1171ac6c2b5364c5c005d31a657b254cb24ffe91ed48a646dd84002f7e4