CVE-2024-13244

CVE-2024-13244: Migrate Tools - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2024-008

Vendor Drupal

Product Migrate Tools

Weakness CWE-352 · CSRF

Published January 9, 2025

Last update January 10, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate Tools allows Cross Site Request Forgery.This issue affects Migrate Tools: from 0.0.0 before 6.0.3.

Key dates

02Disclosure timeline

January 9, 2025 CVE published

January 10, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-13244

Related vulnerabilities

04Related CVE

CVE-2025-67467 WordPress GiveWP plugin <= 4.13.1 - Cross Site Request Forgery (CSRF) vulnerability CVE-2025-23617 WordPress Floatbox Plus plugin <= 1.4.4 - CSRF to Stored XSS vulnerability CVE-2024-3147 DedeCMS makehtml_map.php cross-site request forgery CVE-2026-7882 Concrete CMS 9.5.0 and below is vulnerable to CSRF via the DeleteFile controller CVE-2025-30805 WordPress Flexible Cookies plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) vulnerability