Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become a Drupal Sustaining Member
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
Open Atrium Notifications - Less Critical - Information Disclosure - SA-CONTRIB-2016-026
By
Drupal Security Team
on
4 May 2016 at 16:43 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-026
Project:
Open Atrium Notifications
(third-party module)
Version: 7.x
Date: 2016-May-04
Security risk:
9/25 (
Less Critical
) AC:Complex/A:User/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Information Disclosure
Fieldable Panels Panes - Moderately Critical - XSS - SA-CONTRIB-2016-025
By
Drupal Security Team
on
4 May 2016 at 16:06 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-025
Project:
Fieldable Panels Panes (FPP)
(third-party module)
Version: 7.x
Date: 2016-May-04
Security risk:
10/25 (
Moderately Critical
) AC:Complex/A:User/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
EPSA Crop - Image Cropping - Critical -XSS - SA-CONTRIB-2016-024 - Unsupported
By
Drupal Security Team
on
20 Apr 2016 at 16:51 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-024
Project:
EPSA Crop - Image Cropping
(third-party module)
Version: 7.x
Date: 2016-April-20
Security risk:
18/25 (
Critical
) AC:None/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting, Cross Site Request Forgery
Organic groups - Moderately Critical - Access bypass - DRUPAL-SA-CONTRIB-2016-023
By
Drupal Security Team
on
20 Apr 2016 at 14:24 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-023
Project:
Organic groups
(third-party module)
Version: 7.x
Date: 2016-April-20
Security risk:
12/25 (
Moderately Critical
) AC:Complex/A:User/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Access bypass
Search API - Moderately Critical - Multiple Vulnerabilities - SA-CONTRIB-2016-022
By
Drupal Security Team
on
20 Apr 2016 at 13:31 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-022
Project:
Search API
(third-party module)
Version: 7.x
Date: 2016-April-20
Security risk:
11/25 (
Moderately Critical
) AC:None/A:User/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Information Disclosure, Cross Site Scripting, Access bypass
Boost - Moderately Critical - Information Disclosure - SA-CONTRIB-2016-021
By
Drupal Security Team
on
13 Apr 2016 at 18:30 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-021
Project:
Boost
(third-party module)
Version: 7.x
Date: 2016-April-13
Security risk:
11/25 (
Moderately Critical
) AC:Complex/A:None/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Information Disclosure
Features - Less Critical - Denial of Service (DoS) - SA-CONTRIB-2016-020
By
Drupal Security Team
on
13 Apr 2016 at 15:50 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-020
Project:
Features
(third-party module)
Version: 7.x
Date: 2016-April-13
Security risk:
7/25 (
Less Critical
) AC:Basic/A:Admin/CI:None/II:None/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery, Denial of Service
Drupal Commerce - Less Critical - Information disclosure - SA-CONTRIB-2016-019
By
Drupal Security Team
on
6 Apr 2016 at 16:16 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-019
Project:
Drupal Commerce
(third-party module)
Version: 7.x
Date: 2016-April-06
Security risk:
9/25 (
Less Critical
) AC:Basic/A:None/CI:None/II:None/E:Theoretical/TD:Default
Vulnerability: Information Disclosure
HybridAuth - Less critical - Multiple vulnerabilities - SA-CONTRIB-2016-018
By
Drupal Security Team
on
6 Apr 2016 at 15:13 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-018
Project:
HybridAuth Social Login
(third-party module)
Version: 7.x
Date: 2016-April-06
Security risk:
9/25 (
Less Critical
) AC:Complex/A:User/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Information Disclosure, Open Redirect
Login one time - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-017
By
Drupal Security Team
on
23 Mar 2016 at 14:45 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2016-017
Project:
Login one time
(third-party module)
Version: 6.x, 7.x
Date: 2016-March-23
Security risk:
15/25 (
Critical
) AC:Complex/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
Pages
« first
‹ previous
…
84
85
86
87
88
89
90
91
92
…
next ›
last »
Subscribe with RSS
