Vulnerability in Drupal Eca: Event - Condition Action

CVE-2026-15083

Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Drupal ECA: Event - Condition - Action allows Object Injection. This issue affects ECA: Event - Condition - Action versions: from 0.0.0 to 2.1…

Vulnerability class: Mass Assignment

Affected products

Weakness classification (CWE)

References