Ian Mcbride

**Name of the Vulnerable Software and Affected Versions** Monster Menus versions 0.0.0 through 9.3.1 **Description** The issue is related to insufficient authorization mechanisms in the Monster Menus module of the Drupal CMS, allowing a remote attacker to disclose protected information and impact the integrity of protected information. This can lead to forceful browsing, where an attacker can access unauthorized areas of the system. **Recommendations** For Monster Menus versions 0.0.0 through 9.3.1, update to version 9.3.2 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the system to minimize the risk of exploitation.