Maxime Topolov, CEO, Code.Store calls for a shake-up in Drupal's future in his latest blog, 'Dries in Lille: Storytelling or Escapism for Drupal’s Challenges?' Read about his vision for a revamped Drupal.
Drupal Security team announces a moderately critical access bypass vulnerability SA-CONTRIB-2022-023 in the Fancy File Delete Module on February 9th 2022.
Critical Access bypass, Information Disclosure, and Multiple Vulnerabilities in the Private Taxonomy Terms module SA-CONTRIB-2022-014 was announced on January 26th, 2022
Drupal security team announced a moderately critical access bypass vulnerability SA-CONTRIB-2022-002 in Simple OAuth (OAuth2) & OpenID Connect on 2022, January 5th.
The Drupal security team has announced a critical access bypass vulnerability SA-CONTRIB-2022-001 in the Super Login module in Drupal 8, posted on 2022, January 5th.
The Drupal security team has issued on December 8th, 2021 critical cross-site scripting (XSS) and access bypass vulnerability for webform (SA-CONTRIB-2021-045).