Drupal has released a Moderately Critical security advisory to address a vulnerability in Drupal Private Taxonomy Terms. An unauthorized user could exploit this vulnerability to bypass access permissions to create, modify, and delete private vocabulary terms.

For a complete description of the vulnerabilities and affected systems go to Private Taxonomy Terms - Moderately critical - Access bypass - SA-CONTRIB-2023-001.

IT Security

Read more about IT Security service offerings.