Vulnerability Details CVE-2026-13236
Missing Authorization vulnerability in Drupal AI Agents allows Forceful Browsing. This issue affects AI Agents versions: from 0.0.0 to 1.1.4, from 1.2.0 to 1.2.5, from 1.3.0 to 1.3.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 4.2%
CVSS Severity
CVSS v3 Score 4.2
Products affected by CVE-2026-13236
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.0
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.1
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.2
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.3
-
cpe:2.3:a:artificial_intelligence_project:artificial_intelligence:1.2.4