4 matches found
CVE-2024-13243
creationtimestamp| type| source ---|---|--- 2025-01-09 18:52:25+00:00| seen| https://infosec.exchange/users/cve/statuses/113799904988161936 2025-01-09 19:15:48+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfdfb5lmc722 2025-01-09 19:22:41+00:00| seen|...
CVE-2024-13243
CVE-2024-13243: In Drupal, the Entity Delete Log module (versions 0.0.0 through 1.1.1) suffers a missing authorization vulnerability that enables forceful browsing and an access bypass to log information. The issue is rooted in insufficient permissions handling for the log view/report page, enabl...
CVE-2024-13243 Entity Delete Log - Moderately critical - Access bypass - SA-CONTRIB-2024-007
Missing Authorization vulnerability in Drupal Entity Delete Log allows Forceful Browsing.This issue affects Entity Delete Log: from 0.0.0 before 1.1.1...
CVE-2024-13243 Entity Delete Log - Moderately critical - Access bypass - SA-CONTRIB-2024-007
Missing Authorization vulnerability in Drupal Entity Delete Log allows Forceful Browsing.This issue affects Entity Delete Log: from 0.0.0 before 1.1.1...