Home

Description

Incorrect Authorization vulnerability in Drupal Smart IP Ban allows Forceful Browsing.This issue affects Smart IP Ban: from 7.X-1.0 before 7.X-1.1.

PUBLISHED Reserved 2025-01-09 | Published 2025-01-09 | Updated 2025-01-10 | Assigner drupal

Problem types

CWE-863 Incorrect Authorization

Product status

Default status
unaffected

7.x-1.0 (custom) before 7.x-1.1
affected

Credits

Shawn Gants finder

Sivaji Ganesh Jojodae remediation developer

Greg Knaddison coordinator

Damien McKenna coordinator

Juraj Nemec coordinator

References

www.drupal.org/sa-contrib-2024-041

cve.org (CVE-2024-13277)

nvd.nist.gov (CVE-2024-13277)

Download JSON