These are all public in the queues, but creating this meta to help website administrators. I have not parse all 200 or so open bug reports for others.

#2542432 quickly checks what appears to be some false hits, but a second pair of eyes on these would be good.

#2077127: Potential WASC-19 SQL Injection
#2542432: CrossRef data should be sanitized
#2855901: Publication type links

Strange "safe" security issue, the code can't actually run on a Drupal 7 installation.

#2856487: Drupal 7 biblio_update_6026() is broken

Comments

Alan D. created an issue. See original summary.

Alan D.’s picture

Title: Security Vulnerabilities » Biblio Security Vulnerabilities
Alan D.’s picture

Issue tags: +security