CVE-2026-1553 | THREATINT

Description

Incorrect Authorization vulnerability in Drupal Drupal Canvas allows Forceful Browsing.This issue affects Drupal Canvas: from 0.0.0 before 1.0.4.

PUBLISHED Reserved 2026-01-28 | Published 2026-02-04 | Updated 2026-02-04 | Assigner drupal

Default status

unaffected

0.0.0 (semver) before 1.0.4

affected

jschref finder

BÃ¡lint KlÃ©ri (balintbrews) remediation developer

Matt Glaman (mglaman) remediation developer

Christian LÃ³pez EspÃnola (penyaskito) remediation developer

Tim Plunkett (tim.plunkett) remediation developer

Alex Bronstein (effulgentsia) coordinator

Greg Knaddison (greggles) coordinator

Download JSON