CVE-2024-13304

CVE-2024-13304: Minify JS - Moderately critical - Cross site request forgery - SA-CONTRIB-2024-070

Vendor Drupal
Product Minify JS
Weakness CWE-352 · CSRF
Published January 9, 2025
Last update January 10, 2025

CVSS base score

What the vulnerability does

01Description

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Minify JS allows Cross Site Request Forgery.This issue affects Minify JS: from 0.0.0 before 3.0.3.

Key dates

02Disclosure timeline

January 9, 2025 CVE published
January 10, 2025 Record updated