Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become a Drupal Sustaining Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
Stickynote - Cross Site Scripting (XSS) - Moderately Critical - SA-CONTRIB-2015-154
By
Drupal Security Team
on
7 Oct 2015 at 15:40 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-154
Project:
stickynote
(third-party module)
Version: 7.x
Date: 2015-October-07
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
Taxonomy Find - Unsupported - SA-CONTRIB-2015-153
By
Drupal Security Team
on
30 Sep 2015 at 20:16 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-153
Project:
Taxonomy Find
(third-party module)
Version: 6.x, 7.x
Date: 2015-September-30
Security risk:
13/25 (
Moderately Critical
) AC:None/A:Admin/CI:Some/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Cross Site Scripting
User Dashboard - SQL Injection - Critical - SA-CONTRIB-2015-152
By
Drupal Security Team
on
30 Sep 2015 at 20:13 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-152
Project:
UserDashboard
(third-party module)
Version: 7.x
Date: 2015-September-30
Security risk:
19/25 (
Critical
) AC:Complex/A:None/CI:All/II:All/E:Theoretical/TD:All
Vulnerability: SQL Injection
Scald - Moderately Critical - Information Disclosure - SA-CONTRIB-2015-151
By
Drupal Security Team
on
16 Sep 2015 at 15:57 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-151
Project:
Scald: Media Management made easy
(third-party module)
Version: 7.x
Date: 2015-September-16
Security risk:
11/25 (
Moderately Critical
) AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Information Disclosure
CMS Updater - Moderately Critical - Multiple vulnerabilities - SA-CONTRIB-2015-150
By
Drupal Security Team
on
16 Sep 2015 at 15:05 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-150
Project:
CMS Updater
(third-party module)
Version: 7.x
Date: 2015-September-16
Security risk:
12/25 (
Moderately Critical
) AC:Basic/A:User/CI:None/II:Some/E:Proof/TD:All
Vulnerability: Cross Site Scripting, Access bypass
amoCRM - Moderately Critical - Cross Site Scripting - SA-CONTRIB-2015-149
By
Drupal Security Team
on
16 Sep 2015 at 14:55 UTC
Advisory ID: SA-CONTRIB-2015-149
Project:
amoCRM
(third-party module)
Version: 7.x
Date: 2015-September-16
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Proof/TD:Default
Vulnerability: Cross Site Scripting
Drupal 7 driver for SQL Server and SQL Azure - Moderately Critical - SQL Injection - SA-CONTRIB-2015-148
By
Drupal Security Team
on
16 Sep 2015 at 14:38 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-148
Project:
Drupal 7 driver for SQL Server and SQL Azure
(third-party module)
Version: 7.x
Date: 2015-September-16
Security risk:
10/25 (
Moderately Critical
) AC:Complex/A:None/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: SQL Injection
RESTful - Moderately Critical - Access bypass - SA-CONTRIB-2015-147
By
Drupal Security Team
on
9 Sep 2015 at 18:18 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-147
Project:
RESTful
(third-party module)
Version: 7.x
Date: 2015-September-09
Security risk:
12/25 (
Moderately Critical
) AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Access bypass
Twitter - Moderately Critical - Access bypass - SA-CONTRIB-2015-146
By
Drupal Security Team
on
9 Sep 2015 at 17:09 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-146
Project:
Twitter
(third-party module)
Version: 6.x, 7.x
Date: 2015-September-09
Security risk:
12/25 (
Moderately Critical
) AC:Basic/A:User/CI:None/II:Some/E:Exploit/TD:Uncommon
Vulnerability: Access bypass
Fieldable Panels Panes - Less Critical - Access bypass - SA-CONTRIB-2015-145
By
Drupal Security Team
on
2 Sep 2015 at 17:50 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-145
Project:
Fieldable Panels Panes (FPP)
(third-party module)
Version: 7.x
Date: 2015-September-02
Security risk:
8/25 (
Less Critical
) AC:Basic/A:Admin/CI:None/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass
Pages
« first
‹ previous
…
89
90
91
92
93
94
95
96
97
…
next ›
last »
Subscribe with RSS
