DRUPAL-CONTRIB-2022-056

See a problem?
Import Source
https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/permissions_by_term/DRUPAL-CONTRIB-2022-056.json
JSON Data
https://api.osv.dev/v1/vulns/DRUPAL-CONTRIB-2022-056
Published
2022-09-07T17:06:06Z
Modified
2025-12-10T23:32:38.062412Z
Summary
[none]
Details

This module enables you to set content permissions based on taxonomy terms.

The module doesn't sufficiently restrict access to translated and unpublished nodes.

This vulnerability is mitigated by the fact that it only affects sites with translated content.

References
Credits

Affected packages

Packagist:https://packages.drupal.org/8 / drupal/permissions_by_term

Package

Name
drupal/permissions_by_term
Purl
pkg:composer/drupal/permissions_by_term

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1.19
Database specific
{
    "constraint": "<3.1.19"
}

Database specific

affected_versions
"<3.1.19"
source
"https://github.com/DrupalSecurityTeam/drupal-advisory-database/blob/main/advisories/permissions_by_term/DRUPAL-CONTRIB-2022-056.json"