Shorthand - Critical - Access bypass - SA-CONTRIB-2023-038

Project: ShorthandVersion: 2023-August-23Security risk: Critical 15∕25 AC:None/A:None/CI:Some/II:None/E:Theoretical/TD:AllVulnerability: Access bypassAffected versions: <4.0.3Description: This module provides integration with Shorthand, an application which describes itself as "beautifully simple storytelling".
The module does not check appropriate permissions when displaying a list of all shorthand stories.Solution: Install the latest version:

  • If you use the Shorthand module for Drupal 8+, upgrade to Shorthand 4.0.3

Reported By: 

Fixed By: 

Coordinated By: 

Path to article