Security Advisory: Update REST & JSON API Authentication Module to Version 2.0.13
Drupal has released a security advisory for the REST & JSON API Authentication module, highlighting a moderately critical access bypass vulnerability. The issue, reported by Arek Suchecki, affects versions below 2.0.13 and relates to insufficient user access control when using Basic Authentication. Users are advised to upgrade to version 2.0.13 immediately. The update was fixed by solideogloria, Shashank Thigale, and Arek Suchecki, with coordination from Greg Knaddison, Juraj Nemec, David Rothstein, and Michael Hess of the Drupal Security Team. The 8.x-1.x branch is no longer supported and users should migrate to the latest 2.0.x branch.
Source Reference
Image Attribution Disclaimer: At The Drop Times (TDT), we are committed to properly crediting photographers whose images appear in our content. Many of the images we use come from event organizers, interviewees, or publicly shared galleries under CC BY-SA licenses. However, some images may come from personal collections where metadata is lost, making proper attribution challenging.
Our purpose in using these images is to highlight Drupal, its events, and its contributors—not for commercial gain. If you recognize an image on our platform that is uncredited or incorrectly attributed, we encourage you to reach out to us at #thedroptimes channel on Drupal Slack.
We value the work of visual storytellers and appreciate your help in ensuring fair attribution. Thank you for supporting open-source collaboration!
ASK: Drupal Community Needs Your Support
View all →
Disclosure: This content is produced with the assistance of AI.
Note: The vision of this web portal is to help promote news and stories around the Drupal community and promote and celebrate the people and organizations in the community. We strive to create and distribute our content based on these content policy. If you see any omission/variation on this please reach out to us at #thedroptimes channel on Drupal Slack and we will try to address the issue as best we can.
Related People
You may also like
