Drupal has published a security advisory to address vulnerabilities in the following products on the 28th of September 2022. It is recommended that you take the necessary precautions to ensure your products are always protected.
Drupal 9.3 versions prior to 9.3.22
Drupal 9.4 versions prior to 9.4.7
For more information on these updates, you can follow this URL:
https://www.drupal.org/sa-core-2022-016
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Drupal Security Advisory.pdf
References
Drupal Security Advisory (28th of September 2022). Retrieved from The Canadian Centre for Cyber Security
https://cyber.gc.ca/en/alerts-advisories/drupal-security-advisory-av22-544
Drupal Security Advisories (28th of September 2022). Retrieved from Drupal
https://www.drupal.org/sa-core-2022-016