CVE-2009-4527
CVE-2009-4527 concerns the Drupal Shibboleth authentication module. The affected components are Shibboleth module versions 5.x before 5.x-3.4 and 6.x before 6.x-3.2. The root cause is that statically granted privileges are not properly removed after a logout or session change, allowing physically...