Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
SA-CONTRIB-2015-067 - Finder - Open Redirect
By
Drupal Security Team
on
4 Mar 2015 at 16:41 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-067
Project:
Finder
(third-party module)
Version: 6.x, 7.x
Date: 2015-March-04
Security risk:
9/25 (
Less Critical
) AC:Complex/A:None/CI:None/II:None/E:Theoretical/TD:All
Vulnerability: Open Redirect
SA-CONTRIB-2015-066 - Tracking Code - Cross Site Request Forgery (CSRF)
By
Drupal Security Team
on
4 Mar 2015 at 16:39 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-066
Project:
Tracking Code
(third-party module)
Version: 7.x
Date: 2015-March-04
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
SA-CONTRIB-2015-065 - Registration codes - Multiple vulnerabilities
By
Drupal Security Team
on
4 Mar 2015 at 16:35 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-065
Project:
Registration codes
(third-party module)
Version: 6.x, 7.x
Date: 2015-March-04
Security risk:
16/25 (
Critical
) AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting, Cross Site Request Forgery
SA-CONTRIB-2015-064 - Ubercart Discount Coupons - Cross Site Scripting (XSS)
By
pere orga
on
4 Mar 2015 at 16:29 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-064
Project:
Ubercart Discount Coupons
(third-party module)
Version: 6.x
Date: 2015-March-04
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2015-063 - Webform - Cross Site Scripting (XSS)
By
Drupal Security Team
on
4 Mar 2015 at 16:22 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-063
Project:
Webform
(third-party module)
Version: 6.x, 7.x
Date: 2015-March-04
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:Admin/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2015-062 - Watchdog Aggregator - Cross Site Request Forgery (CSRF) - Unsupported
By
Drupal Security Team
on
25 Feb 2015 at 16:33 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-062
Project:
Watchdog Aggregator
(third-party module)
Version: 6.x, 7.x
Date: 2015-February-25
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
SA-CONTRIB-2015-061 - Ubercart Webform Integration - Cross Site Scripting (XSS)
By
Drupal Security Team
on
25 Feb 2015 at 16:31 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-061
Project:
Ubercart Webform Integration
(third-party module)
Version: 6.x, 7.x
Date: 2015-February-25
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2015-060 - Custom Sitemap - Cross Site Request Forgery (CSRF) - Unsupported
By
Drupal Security Team
on
25 Feb 2015 at 16:28 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-060
Project:
Custom Sitemap
(third-party module)
Version: 7.x
Date: 2015-February-25
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
SA-CONTRIB-2015-059 - Spider Video Player - Multiple vulnerabilities - Unsupported
By
Drupal Security Team
on
25 Feb 2015 at 16:25 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-059
Project:
Spider Video Player
(third-party module)
Version: 6.x, 7.x
Date: 2015-February-25
Security risk:
15/25 (
Critical
) AC:None/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Access bypass, Cross Site Request Forgery, Multiple vulnerabilities
SA-CONTRIB-2015-058 - Spider Catalog - Cross Site Request Forgery (CSRF) - Unsupported
By
Drupal Security Team
on
25 Feb 2015 at 16:22 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-058
Project:
Spider Catalog
(third-party module)
Version: 6.x, 7.x
Date: 2015-February-25
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
Pages
« first
‹ previous
…
98
99
100
101
102
103
104
105
106
…
next ›
last »
Subscribe with RSS
