CVE-2024-13269
Jan. 9, 2025, 8:15 p.m.
Tags
Product(s) Impacted
Drupal Advanced Varnish
- 0.0.0 before 4.0.11
Description
Insertion of Sensitive Information Into Sent Data vulnerability in Drupal Advanced Varnish allows Forceful Browsing.This issue affects Advanced Varnish: from 0.0.0 before 4.0.11.
Weaknesses
CWE-201
Insertion of Sensitive Information Into Sent Data
The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.
CWE ID: 201Date
Published: Jan. 9, 2025, 8:15 p.m.
Last Modified: Jan. 9, 2025, 8:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
mlhess@drupal.org
References
https://www.drupal.org/
mlhess@drupal.org