CVE-2024-13281

CVE-2024-13281: Monster Menus - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2024-045

Vendor Drupal
Product Monster Menus
Weakness CWE-863 · Incorrect authorization
Published January 9, 2025
Last update January 10, 2025

CVSS base score

What the vulnerability does

01Description

Incorrect Authorization vulnerability in Drupal Monster Menus allows Forceful Browsing.This issue affects Monster Menus: from 0.0.0 before 9.3.2.

Key dates

02Disclosure timeline

January 9, 2025 CVE published
January 10, 2025 Record updated