Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-13288

Deserialization of Untrusted Data vulnerability in Drupal Monster Menus allows Object Injection.This issue affects Monster Menus: from 0.0.0 before 9.3.4, from 9.4.0 before 9.4.2.

Published

2025-01-09T21:15:26.220

Last Modified

2025-09-02T18:26:45.937

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-502
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application monster_menus_project monster_menus < 9.3.4 Yes
Application monster_menus_project monster_menus < 9.4.2 Yes
References