CVE-2013-7067

Name of the Vulnerable Software and Affected Versions OG Features module versions 6.x-1.x before 6.x-1.4 for Drupal

Description The issue allows remote attackers to bypass intended access restrictions. This is due to the OG Features module not properly overriding pages that have an access callback set to false, enabling attackers to access restricted areas via a request.

Recommendations For OG Features module versions 6.x-1.x before 6.x-1.4, update to version 6.x-1.4 or later to resolve the issue.