CVE-2026-10768

ANALYSIS PENDING

LocalGov Workflows - Moderately critical - Information disclosure - SA-CONTRIB-2026-039

Title source: cna
STIX 2.1

Description

Missing Authorization vulnerability in Drupal LocalGov Workflows allows Forceful Browsing. This issue affects LocalGov Workflows versions: from 0.0.0 to 1.6.0.

References (1)

Core 1

Scores

EPSS 0.0014
EPSS Percentile 3.9%

Details

CWE
CWE-862
Status published
Products (1)
Drupal/LocalGov Workflows 0.0.0 - 1.6.0
Published Jul 10, 2026
Tracked Since Jul 11, 2026