CVE-2024-13250

CVE-2024-13250: Drupal Symfony Mailer Lite - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2024-014

Vendor Drupal

Product Drupal Symfony Mailer Lite

Weakness CWE-352 · CSRF

Published January 9, 2025

Last update January 10, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Drupal Symfony Mailer Lite allows Cross Site Request Forgery.This issue affects Drupal Symfony Mailer Lite: from 0.0.0 before 1.0.6.

Key dates

Disclosure timeline

January 9, 2025 CVE published

January 10, 2025 Record updated