Report incident

Security Alerts

Vulnerability Alert - Drupal

type Vulnerabilities
Systems AffectedDrupal 8.7.4 with the experimental Workspaces module active.
System Applications

Description

It was found a access bypass vulnerability in Drupal 8.7.4 when the experimental Workspace module is enabled.

impact

This vulnerability allows an attacker to take control of an affected website.

Resolution

Update Drupal to version 8.7.5 or disable the Workspaces module.

References

Drupal:
https://www.drupal.org/sa-core-2019-008