Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.This issue affects Basic HTTP Authentication: from 7.X-1.0 before 7.X-1.4.
{
"cwe_ids": [
"CWE-863"
],
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/13xxx/CVE-2024-13291.json",
"cna_assigner": "drupal"
}{
"extracted_events": [
{
"introduced": "7.x-1.0"
},
{
"fixed": "7.x-1.4"
}
],
"source": "AFFECTED_FIELD"
}