2013-10-09 17:00:00
redhat
PUBLISHED
The Make Meeting Scheduler module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to bypass intended access restrictions for a poll via a direct request to the nodes URL instead of the hashed URL.