Drupal Security Update: Private Taxonomy Terms 8.x-2.6
Drupal released a security update, ' Private Taxonomy Terms 8.x-2.6', on 11 January 2023 which will address a vulnerability affecting private vocabulary modules for Drupal 8.x. This module enables users to set a vocabulary to 'private'.
A private vocabulary gives users the ability to have their own terms in a vocabulary, while still allowing terms to be shared with other users. It also associates every term in a private vocabulary with a specific user.
This update guarantees that the terms of a private vocabulary cannot be seen or accessed by users who do not have permission to view them. It also ensures that private vocabularies are not exposed to unauthorized users.
If you are using the Private Taxonomy Terms module for Drupal 8.x, it is recommended that you upgrade to Private Taxonomy Terms 8.x-2.6 as soon as possible. This latest version provides support for improved security measures, as well as allowing for cross-site scripting safety and protection against denial of service attacks.
Furthermore, there have been numerous bug fixes and performance enhancements to ensure better stability for your website. Upgrading is easy and can be done through the module's page on drupal.org.
Note: The vision of this web portal is to help promote news and stories around the Drupal community and promote and celebrate the people and organizations in the community. We strive to create and distribute our content based on these content policy. If you see any omission/variation on this please let us know in the comments below and we will try to address the issue as best we can.