Skip to main content Skip to search
Can we use first and third party cookies and web beacons to understand our audience, and to tailor promotions you see?
Main menu
  • Drupal.org home
  • Platform
    • Drupal Core
    • Drupal CMS
    • Drupal 11
    • Drupal AI
  • Solutions
    • Case studies
    • Fintech
    • Education
    • Retail
    • E-commerce
    • Healthcare
    • High Tech
    • Nonprofit
    • Government
    • Travel
    • Decoupled
  • Develop
    • Local Development Guide
    • Drupal user guide
    • Installing Drupal
    • API reference
    • All Documentation
  • Download
    • Download
    • Modules
    • Themes
    • Distributions
    • Issue queues
  • Get Support
    • Drupal CMS User Guide
    • Drupal user guide
    • Training
    • Drupal Slack
    • Find an Agency Partner
    • Find a Migration partner
    • Find Integrations & Hosting
    • Security Advisories
  • Connect
    • About the Community
    • Community Events
    • Jobs/Careers
    • DrupalCon
    • How to Contribute
    • Drupal in the News
    • Sign up for Drupal News
  • Support Drupal
    • The Drupal Association
    • Donate
    • Become a Partner
    • Become a Ripple Maker
    • Become an Organization Member
    • Drupal Swag Shop
  • Get Started
    • Try Drupal CMS
    • Try Hosting
Return to content

Search form

  • Log in, view profile, and more
    • Log in
    • Create account
Drupal.org
Announcement iconDDEV is the official local development tool of Drupal. And like Drupal, DDEV depends on the support of the open source community.
Learn how to support DDEV
Home

Security update

ignition 1.0.4

Git tag 1.0.4
Security update

Contributors (3)

catch of the Drupal Security Team, Dieter Holvoet, Heine Deelstra of the Drupal Security Team

Changelog

Issues: 1 issue resolved.

Changes since 1.0.3:

  • Read more about ignition 1.0.4
  • View usage statistics for this release

ai 1.0.3

Git tag 1.0.3
Security update
Bug fixes
Insecure

Resolves AI (Artificial Intelligence) - Access bypass, Information disclosure - SA-CONTRIB-2025-004

Also:

  • Read more about ai 1.0.3
  • View usage statistics for this release

ai 1.0.2

Git tag 1.0.2
Security update
Insecure

Added CSRF check on the Deepchat endpoint.

See AI (Artificial Intelligence) - Critical - Cross Site Request Forgery - SA-CONTRIB-2025-003.

  • Read more about ai 1.0.2
  • View usage statistics for this release

email_tfa 2.0.3

Git tag 2.0.3
Security update

See Email TFA - Moderately critical - Access bypass - SA-CONTRIB-2025-001.

  • Read more about email_tfa 2.0.3
  • View usage statistics for this release

social 12.3.10

Git tag 12.3.10
Security update
Insecure
Insecure

Open Social - Moderately critical - Access bypass - SA-CONTRIB-2024-076

Few notes to take into account:

  • Read more about social 12.3.10
  • View usage statistics for this release

social 12.4.9

Git tag 12.4.9
Security update
Insecure

Open Social - Moderately critical - Access bypass - SA-CONTRIB-2024-076

Few notes to take into account:

  • Read more about social 12.4.9
  • View usage statistics for this release

Pages

  • « first
  • ‹ previous
  • …
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • …
  • next ›
  • last »
Subscribe with RSS Subscribe to RSS - Security update

News items

  • News
  • Planet Drupal
  • Social media
  • Sign up for Drupal news
  • Security advisories
  • Jobs

Our community

  • Community
  • Services, Training & Hosting
  • Contributor guide
  • Groups & meetups
  • DrupalCon
  • Code of conduct

Documentation

  • Documentation
  • Drupal Guide
  • Drupal User Guide
  • Developer docs
  • API.Drupal.org

Drupal code base

  • Download & Extend
  • Drupal core
  • Modules
  • Themes
  • Distributions

Governance of community

  • About
  • Web accessibility
  • Drupal Association
  • About Drupal.org
  • Terms of service
  • Privacy policy

Drupal is a registered trademark of Dries Buytaert.