CVE-2024-13243

Missing Authorization vulnerability in Drupal Entity Delete Log allows Forceful Browsing.This issue affects Entity Delete Log: from 0.0.0 before 1.1.1...

CVE-2024-13243

CVE-2024-13243: In Drupal, the Entity Delete Log module (versions 0.0.0 through 1.1.1) suffers a missing authorization vulnerability that enables forceful browsing and an access bypass to log information. The issue is rooted in insufficient permissions handling for the log view/report page, enabl...