Critical Security Patch for Drupal Entity Delete Log Module Released

Drupal released crucial security updates for the Entity Delete Log module yesterday, addressing an access bypass vulnerability in versions below 1.1.1. This module allows easy tracking of node, comment, file, user, vocabulary, and term deletions, saving essential information in the database. The recorded details include entity ID, type, bundle, author, title, revisions, creation and deletion dates, and the user responsible for the deletion. Users are strongly advised to upgrade to version 1.1.1 to mitigate potential risks. 

The Entity Delete Log module supports Drupal's core entity types, such as comments, files, nodes, taxonomy terms, taxonomy vocabularies, and users. It also integrates with Views for data retrieval and display, offering flexibility and customization. Learn more here.

Disclosure: This content is produced with the assistance of AI.

Note: The vision of this web portal is to help promote news and stories around the Drupal community and promote and celebrate the people and organizations in the community. We strive to create and distribute our content based on these content policy. If you see any omission/variation on this please let us know in the comments below and we will try to address the issue as best we can.

Advertisement Here

Call for Support