- Issue created by @poker10
Today, SA-CONTRIB-2025-042 was released for 8.x-1.x and 3.0.x branches, see: https://www.drupal.org/sa-contrib-2025-042 → .
We should fix the issue in 8.x-2.x, which is only a beta and was not covered in the security release.
Active
2.0
Code
It is used for security vulnerabilities which do not need a security advisory. For example, security issues in projects which do not have security advisory coverage, or forward-porting a change already disclosed in a security advisory. See Drupal’s security advisory policy for details. Be careful publicly disclosing security vulnerabilities! Use the “Report a security vulnerability” link in the project page’s sidebar. See how to report a security issue for details.