Drupal · Ohdear Integration · CVE-2024-13290
**Name of the Vulnerable Software and Affected Versions**
OhDear Integration versions 0.0.0 through 2.0.3
**Description**
The issue is related to incorrect authorization in the OhDear Integration module for Drupal, allowing forceful browsing. This can enable a remote attacker to access confidential information.
**Recommendations**
For OhDear Integration versions 0.0.0 through 2.0.3, update to version 2.0.4 or later to resolve the issue.