CNNVD-202602-570 Information

CNNVD ID

CNNVD-202602-570

Related CVE

CVE-2026-0944

• CNNVD Published: 2026-02-04

Description (Chinese)

Drupal Group invite是Drupal公司的一个入组邀请模块。 Drupal Group invite 2.3.9之前版本、3.0.4之前版本和4.0.4之前版本存在安全漏洞，该漏洞源于异常条件检查不当，可能导致强制浏览。

Description (English)

Drupal Group invite is a grouping invitation module for Drupal. There is a security loophole in the previous versions of Drupal Group 2.3.9, 3.0.4 and 4.04, which stems from inappropriate inspections of abnormal conditions and may lead to forced browsing.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2026-02-04

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2026-001

Patch

https://www.drupal.org/sa-contrib-2026-001