CVE-2024-13282
CVE-2024-13282 concerns the Drupal Block permissions module, affected versions 1.0.0 through 1.2.0 (vulnerable). The issue is an incorrect authorization mechanism that can enable forceful browsing (unrestricted access bypass) to protected blocks. Exploitation details are not described beyond this...