DRUPAL-CONTRIB-2024-068

See a problem?
Import Source
https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/pages_restriction/DRUPAL-CONTRIB-2024-068.json
JSON Data
https://api.osv.dev/v1/vulns/DRUPAL-CONTRIB-2024-068
Aliases
  • CVE-2024-13302
Published
2024-12-04T14:46:03Z
Modified
2025-12-10T23:41:32.345335Z
Summary
[none]
Details

Module to restrict access from anonymous and regular users to configured pre-defined pages.

The module does not adequately handle protecting certain types of URLs.

References
Credits

Affected packages

Packagist:https://packages.drupal.org/8 / drupal/pages_restriction

Package

Name
drupal/pages_restriction
Purl
pkg:composer/drupal/pages_restriction

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.0.0
Fixed
2.0.3
Database specific 
{
    "constraint": ">=2.0.0 <2.0.3"
}

Database specific

source 
"https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/pages_restriction/DRUPAL-CONTRIB-2024-068.json"
affected_versions 
">=2.0.0 <2.0.3"