Vulnerability Details CVE-2024-13291
Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.This issue affects Basic HTTP Authentication: from 7.X-1.0 before 7.X-1.4.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.4%
CVSS Severity
CVSS v3 Score 7.3
References
Products affected by CVE-2024-13291
-
cpe:2.3:a:basic_http_authentication_project:basic_http_authentication:7.x-1.1
-
cpe:2.3:a:basic_http_authentication_project:basic_http_authentication:7.x-1.2
-
cpe:2.3:a:basic_http_authentication_project:basic_http_authentication:7.x-1.3