drupal/paragraphs is vulnerable to Access Bypass
50
Medium Risk
The Drupal Paragraphs Library module does not properly restrict access to direct child paragraphs of library items through API endpoints, allowing unauthorized access. This issue only affects sites using the paragraphs_library module where another module grants general write access to paragraphs.
You are affected if you are using a version that falls within the vulnerable range.
drupal/paragraphs is vulnerable to Access Bypass in versions 0.0.1 - 1.20.0.
Upgrade the drupal/paragraphs library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant