These pages are visible to anyone without logging in:
http://chemtrove.rsc-us.org/template.php?bit_id=286
http://rscchemtrove.liberata.com/template.php?bit_id=354
despite the first example being in a labtrove instance which has been locked down (not public) and the second being in a notebook that should only be visible to its notebook users.
This is particularly important since they correspond to "edit" pages so that someone could spend a lot of time filling in those template fields and then lose it all when they click to save or publish it.
It might be a good idea to review other urls in case the bug affects them too if possible (in case it's more widespread than this one example)...
Fixed in revision 829.