CyberAlerts

CVE-2024-13270

Freelinking - Moderately critical - Information Disclosure - SA-CONTRIB-2024-034

Description: Incorrect Authorization vulnerability in Drupal Freelinking allows Forceful Browsing.This issue affects Freelinking: from 0.0.0 before 4.0.1.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13269

Advanced Varnish - Moderately critical - Access bypass - SA-CONTRIB-2024-033

Description: Insertion of Sensitive Information Into Sent Data vulnerability in Drupal Advanced Varnish allows Forceful Browsing.This issue affects Advanced Varnish: from 0.0.0 before 4.0.11.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13268

Opigno - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-032

Description: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno allows PHP Local File Inclusion.This issue affects Opigno: from 7.X-1.0 before 7.X-1.23.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13267

Opigno TinCan Question Type - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-031

Description: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno TinCan Question Type allows PHP Local File Inclusion.This issue affects Opigno TinCan Question Type: from 7.X-1.0 before 7.X-1.3.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13266

Responsive and off-canvas menu - Moderately critical - Access bypass - SA-CONTRIB-2024-030

Description: Incorrect Authorization vulnerability in Drupal Responsive and off-canvas menu allows Forceful Browsing.This issue affects Responsive and off-canvas menu: from 0.0.0 before 4.4.4.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13265

Opigno Learning path - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-029

Description: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno Learning path allows PHP Local File Inclusion.This issue affects Opigno Learning path: from 0.0.0 before 3.1.2.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13264

Opigno module - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-028

Description: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno module allows PHP Local File Inclusion.This issue affects Opigno module: from 0.0.0 before 3.1.2.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13263

Opigno group manager - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-027

Description: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno group manager allows PHP Local File Inclusion.This issue affects Opigno group manager: from 0.0.0 before 3.1.1.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13262

View Password - Moderately critical - Cross Site Scripting - SA-CONTRIB-2024-026

Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal View Password allows Cross-Site Scripting (XSS).This issue affects View Password: from 0.0.0 before 6.0.4.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

CVE-2024-13261

Acquia DAM - Moderately critical - Cross Site Request Forgery, Denial of Service - SA-CONTRIB-2024-025

Description: Cross-Site Request Forgery (CSRF) vulnerability in Drupal Acquia DAM allows Cross Site Request Forgery.This issue affects Acquia DAM: from 0.0.0 before 1.0.13, from 1.1.0 before 1.1.0-beta3.

EPSS Score: 0.04%

Source: CVE

January 10th, 2025 (6 months ago)

Threat and Vulnerability Intelligence Database

Example Searches: