Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
SA-CONTRIB-2014-087 - Drupal Commerce - Information disclosure
By
Drupal Security Team
on
10 Sep 2014 at 17:23 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-087
Project:
Drupal Commerce
(third-party module)
Version: 7.x
Date: 2014-September-10
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:All
Vulnerability: Information Disclosure
SA-CONTRIB-2014-086 - Custom BreadCrumbs - Cross Site Scripting (XSS)
By
Drupal Security Team
on
10 Sep 2014 at 15:04 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-086
Project:
Custom Breadcrumbs
(third-party module)
Version: 6.x, 7.x
Date: 2014-September-10
Security risk:
16/25 (
Critical
) AC:None/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-085 - Ubercart - Information disclosure
By
Drupal Security Team
on
10 Sep 2014 at 14:58 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-085
Project:
Ubercart
(third-party module)
Version: 7.x
Date: 2014-September-10
Security risk:
10/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Information Disclosure
SA-CONTRIB-2014-084 - Avatar Uploader - Information Disclosure
By
Drupal Security Team
on
3 Sep 2014 at 14:08 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-084
Project:
Avatar Uploader
(third-party module)
Version: 6.x, 7.x
Date: 2014-08-20
Security risk:
16/25 (
Critical
) AC:Basic/A:User/CI:All/II:None/E:Exploit/TD:100
Vulnerability: Information Disclosure
SA-CONTRIB-2014-083 - Rules Link - Cross Site Scripting (XSS)
By
Drupal Security Team
on
27 Aug 2014 at 14:17 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-083
Project:
Rules Link
(third-party module)
Version: 7.x
Date: 2014-August-27
Security risk:
9/25 (
Less Critical
) AC:Complex/A:Admin/CI:None/II:All/E:Theoretical/TD:25
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-082 - Marketo MA - Cross Site Scripting (XSS)
By
Drupal Security Team
on
20 Aug 2014 at 16:16 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-082
Project:
Marketo MA
(third-party module)
Version: 7.x
Date: 2014-08-20
Security risk:
8/25 (
Less Critical
) AC:Basic/A:Admin/CI:None/II:None/E:Proof/TD:100
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-081 - Site Banner - Cross Site Scripting (XSS)
By
Drupal Security Team
on
20 Aug 2014 at 14:08 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-081
Project:
Site Banner
(third-party module)
Version: 7.x
Date: 2014-Aug-20
Security risk:
12/25 (
Moderately Critical
) AC:Complex/A:Admin/CI:Some/II:Some/E:Proof/TD:75
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-080 - Social Stats - Cross Site Scripting (XSS)
By
Drupal Security Team
on
20 Aug 2014 at 14:02 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-080
Project:
Social Stats
(third-party module)
Version: 7.x
Date: 2014-August-20
Security risk:
8/25 (
Less Critical
) AC:Basic/A:User/CI:None/II:None/E:Theoretical/TD:100
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-079 - RedHen CRM - Cross Site Scripting (XSS)
By
Drupal Security Team
on
20 Aug 2014 at 13:58 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-079
Project:
RedHen CRM
(third-party module)
Version: 7.x
Date: 2014-August-20
Security risk:
7/25 (
Less Critical
) AC:Basic/A:Admin/CI:None/II:None/E:Theoretical/TD:100
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-078 - Notify - Access bypass
By
Drupal Security Team
on
13 Aug 2014 at 16:39 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-078
Project:
Notify
(third-party module)
Version: 7.x
Date: 2014-August-13
Security risk:
10/25 ( Moderately Critical) AC:Complex/A:User/CI:Some/II:None/E:Proof/TD:75
Vulnerability: Access bypass
Pages
« first
‹ previous
…
109
110
111
112
113
114
115
116
117
…
next ›
last »
Subscribe with RSS
