This project enables administrators to create modal dialogs.
The routes used by the module lacked proper permissions, allowing untrusted users to access, create and modify modal configurations.
- If you use the Modal Page module 8.x-2.x, upgrade to 8.x-2.5
- Review user permissions after updating to ensure only trusted users have access to manage modals.
- Damien McKenna of the Drupal Security Team