Home 0.0.0 (semver) before 1.6.0
affected
Description
Missing Authorization vulnerability in Drupal LocalGov Workflows allows Forceful Browsing. This issue affects LocalGov Workflows versions: from 0.0.0 to 1.6.0.
Problem types
Product status
Credits
Maria Young (maria.y)
Finn Lewis (finn lewis)
Rupert Jabelman (rupertj)
Greg Knaddison (greggles)
Dave Long (longwave)
Juraj Nemec (poker10)
References
www.drupal.org/sa-contrib-2026-039