- Description
- Deserialization of Untrusted Data vulnerability in Drupal Node export allows Object Injection.This issue affects Node export: from 7.X-* before 7.X-3.3.
- Source
- mlhess@drupal.org
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.6
- Impact score
- 5.9
- Exploitability score
- 0.7
- Vector string
- CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
- mlhess@drupal.org
- CWE-502
- Hype score
- Not currently trending
CVE-2024-13295 Object Injection in Drupal Node Export Before 7.X-3.3 The Node export module in Drupal has a vulnerability. This problem is called "Deserialization of Untrusted Data." It allows Object Injection. T... https://t.co/Ebto8HYk8W
@VulmonFeeds
10 Jan 2025
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-13295 Deserialization of Untrusted Data vulnerability in Drupal Node export allows Object Injection.This issue affects Node export: from 7.X-* before 7.X-3.3. https://t.co/GgA0oLhXta
@CVEnew
10 Jan 2025
186 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes