Lucene search
+L

CVE-2024-45440

🗓️ 23 May 2025 08:07:28Reported by redhat.comType 
redhatcve
 redhatcve
🔗 access.redhat.com👁 8 Views

Drupal 11.x-dev allows Full Path Disclosure due to invalid hash_salt value in authorize.php.

Related
Refs
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Generation of Error Message Containing Sensitive Information in Drupal
10 Feb 202616:18
githubexploit
BDU FSTEC
The vulnerability of the /core/authorize.php file in the Drupal CMS system allows a hacker to disclose protected information.
3 Oct 202400:00
bdu_fstec
Circl
CVE-2024-45440
29 Aug 202413:42
circl
CNNVD
Drupal 安全漏洞
29 Aug 202400:00
cnnvd
CVE
CVE-2024-45440
29 Aug 202400:00
cve
Cvelist
CVE-2024-45440
29 Aug 202400:00
cvelist
Exploit DB
Drupal 11.x-dev - Full Path Disclosure
19 Apr 202500:00
exploitdb
Github Security Blog
Drupal Full Path Disclosure
29 Aug 202412:31
github
Nuclei
Drupal 11.x-dev - Full Path Disclosure
16 Jul 202609:41
nuclei
NVD
CVE-2024-45440
29 Aug 202411:15
nvd
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

28 May 2025 19:30Current
5.2Medium risk
Vulners AI Score5.2
CVSS 3.15.3
EPSS0.09269
SSVC
8