Auth bypass in Drupal Localgov Workflows
CVE-2026-10768
Missing Authorization vulnerability in Drupal LocalGov Workflows allows Forceful Browsing. This issue affects LocalGov Workflows versions: from 0.0.0 to 1.6.0.
Vulnerability class: Broken Access Control
Affected products
- Drupal Localgov Workflows — versions 0.0.0