VYPR
← All advisories
Unrated severityNVD Advisory· Published Feb 4, 2026· Updated Feb 4, 2026

Drupal Canvas - Moderately critical - Access bypass - SA-CONTRIB-2026-006

CVE-2026-1553

Description

Incorrect Authorization vulnerability in Drupal Drupal Canvas allows Forceful Browsing.This issue affects Drupal Canvas: from 0.0.0 before 1.0.4.

Affected products

2
  • Cnvs/Canvasllm-fuzzy
    Range: >=0.0.0.0 - 1.0.4
  • Drupal/Drupal Canvasv5
    Range: 0.0.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.