[Security-news] Allow All File Extensions for file fields - Critical - Unsupported - SA-CONTRIB-2024-075
security-news at drupal.org
security-news at drupal.org
Wed Dec 11 17:46:01 UTC 2024
View online: https://www.drupal.org/sa-contrib-2024-075
Project: Allow All File Extensions for file fields [1]
Date: 2024-December-11
Security risk: *Critical* 18 ∕ 25
AC:Basic/A:User/CI:All/II:All/E:Theoretical/TD:All [2]
Vulnerability: Unsupported
Affected versions: *
Description:
The security team is marking this project unsupported. There is a known
security issue with the project that has not been fixed by the maintainer. If
you would like to maintain this project, please read:
https://www.drupal.org/node/251466#s-becoming-owner-maintainer-or-co-mai...
[3]
Solution:
If you use this project, you should uninstall it. To take over
maintainership, please read
https://www.drupal.org/node/251466#s-becoming-owner-maintainer-or-co-mai...
[4]
[1] https://www.drupal.org/project/all_extensions
[2] https://www.drupal.org/security-team/risk-levels
[3]
https://www.drupal.org/node/251466#s-becoming-owner-maintainer-or-co-maintainer-of-a-project-that-is-unsupported-for-security-reasons
[4]
https://www.drupal.org/node/251466#s-becoming-owner-maintainer-or-co-maintainer-of-a-project-that-is-unsupported-for-security-reasons
More information about the Security-news
mailing list