Download webformblock-6.x-1.2.tar.gztar.gz 8.19 KB
MD5: cf00842375bcb212bd53b5d840bfddff
SHA-1: 81cd93c4da29da87e5b05b5bd0744f575bb5d041
SHA-256: 660ff3db08893685dbbe05dd34d706f9752c44c6b40927941134f441dd7ee4c4
Download webformblock-6.x-1.2.zipzip 9.15 KB
MD5: 9fe45bcf61f29eda92d0cbf26cdd1632
SHA-1: eb05fde7096a408d7d08678ddddb5e75d85439a1
SHA-256: b3295eb50f1ea3f75d94d3b133e8e12eef21ef3b737c324fbad0c8405782820e

Release info

Created by: budda
Created on: March 22, 2011 - 21:41
Last updated: March 23, 2011 - 18:58
Core compatibility: 6.x
Release type: Security update

Release notes

See SA-CONTRIB-2011-014 - Webform Block - Cross Site Scripting

The module does not properly sanitize some of its output, allowing certain users the ability to insert arbitrary HTML and script code. Such a cross site scripting (XSS) attack may lead to a malicious user gaining full administrative access.