5 matches found
CVE-2024-13256
Insufficient Granularity of Access Control vulnerability in Drupal Email Contact allows Forceful Browsing.This issue affects Email Contact: from 0.0.0 before 2.0.4...
CVE-2024-13256
creationtimestamp| type| source ---|---|--- 2025-01-09 19:13:02+00:00| seen| https://infosec.exchange/users/cve/statuses/113799986024892307 2025-01-09 19:16:03+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1023 2025-01-09 19:16:22+00:00| seen|...
CVE-2024-13256 Email Contact - Moderately critical - Access bypass - SA-CONTRIB-2024-020
Insufficient Granularity of Access Control vulnerability in Drupal Email Contact allows Forceful Browsing.This issue affects Email Contact: from 0.0.0 before 2.0.4...
CVE-2024-13256 Email Contact - Moderately critical - Access bypass - SA-CONTRIB-2024-020
Insufficient Granularity of Access Control vulnerability in Drupal Email Contact allows Forceful Browsing.This issue affects Email Contact: from 0.0.0 before 2.0.4...
CVE-2024-13256
CVE-2024-13256 concerns Drupal’s Email Contact module. The issue is an insufficent granularity of access control that can enable forceful browsing to the mail-sending form. Affected versions are 0.0.0 through 2.0.4. Potential impact is access restriction bypass, enabling an attacker to trigger em...