CVE-2024-13266
Jan. 9, 2025, 8:15 p.m.
Tags
Product(s) Impacted
Drupal Responsive and off-canvas menu
- 0.0.0 before 4.4.4
Description
Incorrect Authorization vulnerability in Drupal Responsive and off-canvas menu allows Forceful Browsing.This issue affects Responsive and off-canvas menu: from 0.0.0 before 4.4.4.
Weaknesses
CWE-863
Incorrect Authorization
The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.
CWE ID: 863Date
Published: Jan. 9, 2025, 8:15 p.m.
Last Modified: Jan. 9, 2025, 8:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
mlhess@drupal.org
References
https://www.drupal.org/
mlhess@drupal.org