Serial number: AV24-698
Date: December 9, 2024
On December 4, 2024, Drupal published security advisories to address vulnerabilities in multiple products. Included were critical updates for the following:
- Drupal Download All Files – versions prior to 2.0.2
- Drupal Pages Restriction Access – versions 2.0.0 to prior to 2.0.3
- Drupal OAuth and OpenID Connect Single Sign On - SSO (OAuth/OIDC Client) – versions 3.0.0 to prior to 3.44.0 and 4.0.0 to prior to 4.0.19
- Drupal Print Anything – all versions
- Drupal Megamenu Framework – all versions
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.