Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
Services - Critical - Multiple Vulnerabilites - SA-CONTRIB-2015-096
By
Drupal Security Team
on
15 Apr 2015 at 18:18 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-096
Project:
Services
(third-party module)
Version: 7.x
Date: 2015-April-15
Security risk:
16/25 (
Critical
) AC:None/A:None/CI:Some/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass, Arbitrary PHP code execution, Information disclosure
Display Suite - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-095
By
Drupal Security Team
on
15 Apr 2015 at 14:30 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-095
Project:
Display Suite
(third-party module)
Version: 7.x
Date: 2015-April-15
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Cross Site Scripting
CiviCRM private report - Moderately Critical - Cross Site Request Forgery (CSRF) - SA-CONTRIB-2015-094
By
Drupal Security Team
on
8 Apr 2015 at 15:53 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-094
Project:
CiviCRM private report
(third-party module)
Version: 6.x, 7.x
Date: 2015-April-08
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
User Import - Moderately Critical - Cross Site Request Forgery (CSRF) - SA-CONTRIB-2015-093
By
Drupal Security Team
on
1 Apr 2015 at 17:16 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-093
Project:
User Import
(third-party module)
Version: 6.x, 7.x
Date: 2015-April-01
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
Open Graph Importer - Moderately Critical - Access bypass - Unsupported - SA-CONTRIB-2015-092
By
Drupal Security Team
on
1 Apr 2015 at 16:11 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-092
Project:
Open Graph Importer
(third-party module)
Version: 7.x
Date: 2015-April-01
Security risk:
10/25 (
Moderately Critical
) AC:Basic/A:User/CI:None/II:Some/E:Theoretical/TD:Default
Vulnerability: Access bypass
Current Search Links - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-091
By
Drupal Security Team
on
1 Apr 2015 at 15:06 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-091
Project:
Current Search Links
(third-party module)
Version: 7.x
Date: 2015-April-01
Security risk:
15/25 (
Critical
) AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Cross Site Scripting
Password Policy - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-090
By
Drupal Security Team
on
1 Apr 2015 at 14:52 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-090
Project:
Password policy
(third-party module)
Version: 6.x, 7.x
Date: 2015-April-01
Security risk:
15/25 (
Critical
) AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Cross Site Scripting
EntityBulkDelete - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-089
By
Drupal Security Team
on
1 Apr 2015 at 14:48 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-089
Project:
EntityBulkDelete
(third-party module)
Version: 7.x
Date: 2015-April-01
Security risk:
16/25 (
Critical
) AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
Imagefield Info - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-088
By
Drupal Security Team
on
1 Apr 2015 at 14:43 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-088
Project:
Imagefield Info
(third-party module)
Version: 7.x
Date: 2015-April-01
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:Admin/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
Ubercart Webform Checkout Pane - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-087
By
Drupal Security Team
on
25 Mar 2015 at 16:24 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-087
Project:
Ubercart Webform Checkout Pane
(third-party module)
Version: 6.x, 7.x
Date: 2015-March-25
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
Pages
« first
‹ previous
…
95
96
97
98
99
100
101
102
103
…
next ›
last »
Subscribe with RSS
