HackTesting

CVE-2024-13258

Incorrect Authorization vulnerability in Drupal Drupal REST & JSON API Authentication allows Forceful Browsing.This issue affects Drupal REST & JSON API Authentication: from 0.0.0 before 2.0.13.

Credits

Arek Suchecki
solideogloria
Shashank Thigale
Arek Suchecki
Greg Knaddison
Greg Knaddison
Juraj Nemec
David Rothstein
Michael Hess

References

https://www.drupal.org/sa-contrib-2024-022