Vulnerability Details CVE-2026-55809
Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Drupal Flag attendance field allows Object Injection. This issue affects Flag attendance field versions: from 0.0.0 to 1.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 21.9%
CVSS Severity
CVSS v3 Score 8.1
Products affected by CVE-2026-55809
-
cpe:2.3:a:flag_attendance_field_project:flag_attendance_field:*