1 results (0.002 seconds)
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-13288 – Monster Menus - Critical - Arbitrary PHP code execution - SA-CONTRIB-2024-052
https://notcve.org/view.php?id=CVE-2024-13288
09 Jan 2025 — Deserialization of Untrusted Data vulnerability in Drupal Monster Menus allows Object Injection.This issue affects Monster Menus: from 0.0.0 before 9.3.4, from 9.4.0 before 9.4.2. • https://www.drupal.org/sa-contrib-2024-052 • CWE-502: Deserialization of Untrusted Data •