Джерело:
Security advisories for contributed projects
Дата публікації:
30/11/2022 17:34
Постійна адреса новини:
http://www.vsinovyny.com/9510591
Open Social - Moderately critical - Access bypass - SA-CONTRIB-2022-062
30/11/2022 17:34 // Security advisories for contributed projects
Project:
Date:
2022-November-30
Vulnerability:
Access bypass
Affected versions:
>=11.4.0 <11.4.9 || >=11.5.0 <11.5.1
Description:
Social Private Message module allows users on the platform to allow users to send private messages to each other.
The module does not properly perform the correct access checks for certain operations.
Solution:
Install the latest version:
- If you use the Open Social distribution for Drupal 9.x, upgrade to Open Social 11.5.1
- If you use the Open Social distribution for Drupal 9.x, upgrade to Open Social 11.4.9
Reported By:
Fixed By:
Coordinated By:
- Damien McKenna of the Drupal Security Team
- Greg Knaddison of the Drupal Security Team
| « |
Наступна новина з архіву Бундестаг визнав Голодомор геноцидом українців |
Попередня новина з архіву Open Social - Moderately critical - Access bypass - SA-CONTRIB-2022-061 |
» | |
|
|
||||
© 2026 www.vsinovyny.com