Intel

AIKIDO-2026-376369

drupal/commerce_guest_registration is vulnerable to Use of Unmaintained Third Party Components

Use of Unmaintained Third Party ComponentsCVE-2026-15089 Published 3 days ago

60

Medium Risk

Are you affected? Scan for Free

TL;DR

The drupal/commerce_guest_registration package is no longer maintained. The Drupal security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer.

Who does this affect?

You are affected if you are using this package.

Background info

drupal/commerce_guest_registration is vulnerable to Use of Unmaintained Third Party Components in all versions.

How to fix this

Remove any drupal/commerce_guest_registration package from your application.