CVE-2024-13260
CVE-2024-13260 describes a Cross-Site Request Forgery in the Drupal Migrate queue importer module. The flaw affects the module versions from 0.0.0 up to 2.1.1 and stems from insufficient CSRF protection when performing cron migrations. Exploitation context in the public docs indicates an attacker...