2 matches found
CVE-2013-7067
Summary of CVE-2013-7067 (Drupal OG Features module): The vulnerability affects the Drupal OG Features module (version 6.x-1.x prior to 6.x-1.4). The module does not properly override pages when an access callback is explicitly set to FALSE, allowing remote attackers to bypass intended access res...
SA-CONTRIB-2013-097 - OG Features - Access bypass
This module enables you to enable and disable bundles of functionality for individual Organic groups. In order to provide this functionality, this module must override all menu callbacks available in the system, in order to delegate access based on the current Organic group you are contextually i...