The admin page in the Banckle Chat module for Drupal does not properly restrict access, which allows remote attackers to bypass intended restrictions via unspecified vectors.Referenceshttp://www.openwall.com/lists/oss-security/2013/02/21/5http://drupal.org/node/1916370
