Attention Drupal users! A recent security advisory flags a moderately critical vulnerability in the Mollie for Drupal module. The flaw, related to payment confirmation logic, could expose users to potential exploitation. Discover the recommended updates and secure your online transactions. Read on for essential details on fortifying your Drupal installation against potential risks.
The process of loading fonts from the Google CDN used to expose the users’ Personally Identifiable Information (PII) such as IP addresses to Google. German courts have ruled that this leakage amounts to violation of privacy and threatened DXPR theme users with penalties.
Multiple vulnerabilities are possible if an untrusted user has access to write Twig code, including potential unauthorized read access to private files, the contents of other files on the server, or database credentials.