5 matches found
CVE-2024-13282
Incorrect Authorization vulnerability in Drupal Block permissions allows Forceful Browsing.This issue affects Block permissions: from 1.0.0 before 1.2.0...
CVE-2024-13282 Block permissions - Moderately critical - Access bypass - SA-CONTRIB-2024-046
Incorrect Authorization vulnerability in Drupal Block permissions allows Forceful Browsing.This issue affects Block permissions: from 1.0.0 before 1.2.0...
CVE-2024-13282
CVE-2024-13282 concerns the Drupal Block permissions module, affected versions 1.0.0 through 1.2.0 (vulnerable). The issue is an incorrect authorization mechanism that can enable forceful browsing (unrestricted access bypass) to protected blocks. Exploitation details are not described beyond this...
CVE-2024-13282 Block permissions - Moderately critical - Access bypass - SA-CONTRIB-2024-046
Incorrect Authorization vulnerability in Drupal Block permissions allows Forceful Browsing.This issue affects Block permissions: from 1.0.0 before 1.2.0...
Drupal Block permissions module 1.0.0-1.1.9 - Administrator+ Broken Access Control vulnerability
Administrator+ Broken Access Control vulnerability discovered by Francesco Sardara in WordPress Module Block permissions versions 1.0.0-1.1.9...