GHSA-f84q-mgj9-8jfc: Drupal Content moderation Access bypass

May 15, 2024

In some conditions, drupal content moderation fails to check a users access to use certain transitions, leading to an access bypass.

References

github.com/FriendsOfPHP/security-advisories/blob/master/drupal/core/2018-10-17-1.yaml
github.com/advisories/GHSA-f84q-mgj9-8jfc
github.com/drupal/core
www.drupal.org/sa-core-2018-006

Code Behaviors & Features

Detect and mitigate GHSA-f84q-mgj9-8jfc with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →