Drupal has published a security advisory to address vulnerabilities affecting the following products on the 14th of December 2022. It is recommended that you take the necessary precautions to ensure your products are always protected.
H5P 7.x-1.51
File (Field) Paths 7.x-1.2
For more information on these updates, you can follow these URLs:
https://www.drupal.org/sa-contrib-2022-064
https://www.drupal.org/sa-contrib-2022-065
The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.
PDF Download: Drupal Security Advisory.pdf
References
Drupal Security Advisory. (14th of December 2022). Reviewed from Drupal:
https://www.drupal.org/security
Drupal Security Advisory. (15th December 2022). Reviewed from CISA:
https://www.cisa.gov/uscert/ncas/current-activity/2022/12/15/drupal-releases-security-updates-address-vulnerabilities-h5p-and