The Drupal Security team announced the Colorbox Node project as unsupported on March 23rd, 2022, and therefore the vulnerability that was detected as critical according to the Security advisory SA-CONTRIB-2022-030
Drupal Security Team announced on February 23rd, 2022, a moderately critical Cross-Site Scripting (XSS) vulnerability in the GOV.UK Theme SA-CONTRIB-2022-027.
The Drupal Security Team announced on February 23rd 2022, a moderately critical Cross-Site Scripting (XSS) vulnerability in the Entity Reference Tree Widget module SA-CONTRIB-2022-026.
Drupal security team announced on February 16, 2022, the moderately critical information disclosure vulnerability in Drupal Quick Edit module, SA-CONTRIB-2022-025.
The Drupal security team announced on February 16th, 2022, the moderately critical information disclosure vulnerability in Drupal Core, SA-CORE-2022-004.
Drupal security team announced on February 16th, 2022, the moderately critical improper input validation vulnerability in Drupal Core, SA-CORE-2022-003.
Drupal Security Team announced a Cross-Site Scripting (XSS) vulnerability SA-CONTRIB-2022-024 that has low criticality index in the Custom Breadcrumbs Module on February 9th, 2022.
Drupal Security team announces a moderately critical access bypass vulnerability SA-CONTRIB-2022-023 in the Fancy File Delete Module on February 9th 2022.