CVE-2024-13266

CVE-2024-13266: Responsive and off-canvas menu - Moderately critical - Access bypass - SA-CONTRIB-2024-030

Vendor Drupal
Product Responsive and off-canvas menu
Weakness CWE-863 · Incorrect authorization
Published January 9, 2025
Last update January 14, 2025

CVSS base score

What the vulnerability does

01Description

Incorrect Authorization vulnerability in Drupal Responsive and off-canvas menu allows Forceful Browsing.This issue affects Responsive and off-canvas menu: from 0.0.0 before 4.4.4.

Key dates

02Disclosure timeline

January 9, 2025 CVE published
January 14, 2025 Record updated