CVE-2024-13249

Name of the Vulnerable Software and Affected Versions Node Access Rebuild Progressive versions 7.X-1.0 through 7.X-1.2

Description The issue is related to improper ownership management in Node Access Rebuild Progressive, allowing target influence via framing. This can be exploited by a remote attacker to bypass security restrictions.

Recommendations For versions 7.X-1.0 through 7.X-1.2, update to a version after 7.X-1.2 to resolve the issue. As a temporary workaround, consider restricting access to the Node Access Rebuild Progressive module until a patch is available.