Drupal · Migrate Queue Importer · CVE-2024-13260
**Name of the Vulnerable Software and Affected Versions**
Migrate queue importer versions 0.0.0 through 2.1.1
**Description**
The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability in the Migrate queue importer module of the Drupal content management system. This vulnerability allows for Cross-Site Request Forgery attacks.
**Recommendations**
For versions 0.0.0 through 2.1.1, update to a version later than 2.1.1 to resolve the issue.
As a temporary workaround, consider restricting access to the Migrate queue importer module until a patch is available.