Basic Http Authentication

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2024-13291 HIGH This Month

Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.X-1.0 before 7.X-1.4. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Basic Http Authentication Drupal

NVD

CVSS 3.1

7.3

EPSS

0.1%

CVE-2024-13291

EPSS 0% CVSS 7.3

HIGH This Month

Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.X-1.0 before 7.X-1.4. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Basic Http Authentication Drupal

NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy