๐Ÿ” CVE Alert

CVE-2026-13243

MEDIUM 4.8

Salesforce Suite - Moderately critical - Cross-site request forgery - SA-CONTRIB-2026-063

CVSS Score
4.8
EPSS Score
0.1%
EPSS Percentile
1th

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Salesforce Suite allows Cross Site Request Forgery. This issue affects Salesforce Suite versions: from 0.0.0 to 5.1.3.

CWE CWE-352
Vendor drupal
Product salesforce suite
Ecosystems
Industries
WebMedia
Published Jul 10, 2026
Last Updated Jul 13, 2026
Stay Ahead of the Next One

Get instant alerts for drupal salesforce suite

Be the first to know when new medium vulnerabilities affecting drupal salesforce suite are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Drupal / Salesforce Suite
0.0.0 < 5.1.3

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
drupal.org: https://www.drupal.org/sa-contrib-2026-063

Credits

Muhammedali Aliyev (swordmein) Aaron Bauman (aaronbauman) Neil Drumm (drumm) Juraj Nemec (poker10) Pierre Rudloff (prudloff)