Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
Hotjar - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2017-015
By
Drupal Security Team
on
15 Feb 2017 at 16:19 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-015
Project:
Hotjar
(third-party module)
Version: 7.x, 8.x
Date: 2017-February-15
Security risk:
12/25 (
Moderately Critical
) AC:Complex/A:Admin/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
OSF for Drupal - Less Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2017-014
By
Drupal Security Team
on
8 Feb 2017 at 19:20 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-014
Project:
OSF for Drupal
(third-party module)
Version: 7.x
Date: 2017-February-08
Security risk:
5/25 (
Less Critical
) AC:Basic/A:Admin/CI:None/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Cross Site Scripting
Acquia Content Hub - Moderately Critical - Access Bypass - SA-CONTRIB-2017-013
By
Drupal Security Team
on
8 Feb 2017 at 18:35 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-013
Project:
Acquia Content Hub
(third-party module)
Version: 8.x
Date: 2017-February-08
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:All
Vulnerability: Access bypass
Wetkit Omega - Moderately Critical - Access Bypass - SA-CONTRIB-2017-012
By
Drupal Security Team
on
8 Feb 2017 at 17:00 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-012
Project:
Web Experience Toolkit: Omega
(third-party module)
Version: 7.x
Date: 2017-February-08
Security risk:
10/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:None/E:Proof/TD:Uncommon
Vulnerability: Access bypass
Facebook Pull - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2017-011
By
Drupal Security Team
on
8 Feb 2017 at 16:45 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-011
Project:
Facebook Pull
(third-party module)
Version: 7.x
Date: 2017-February-08
Security risk:
15/25 (
Critical
) AC:Complex/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
Storage API stream wrappers - Moderately Critical - Access bypass - SA-CONTRIB-2017-010
By
Drupal Security Team
on
8 Feb 2017 at 16:27 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-010
Project:
Storage API stream wrappers
(third-party module)
Version: 7.x
Date: 2017-February-08
Security risk:
13/25 (
Moderately Critical
) AC:None/A:None/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass
Better Exposed Filters - Less Critical - Cross Site Sscripting (XSS) - SA-CONTRIB-2017-009
By
Drupal Security Team
on
1 Feb 2017 at 15:50 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-009
Project:
Better Exposed Filters
(third-party module)
Version: 7.x
Date: 2017-February-01
Security risk:
7/25 (
Less Critical
) AC:Complex/A:Admin/CI:None/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Cross Site Scripting
SalesCloud - Critical - Unsupported - SA-CONTRIB-2017-008
By
Drupal Security Team
on
25 Jan 2017 at 18:21 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-008
Project:
Salescloud
(third-party module)
Version: 7.x
Date: 2017-Jan-25
Security risk:
19/25 (
Critical
) AC:None/A:None/CI:Some/II:Some/E:Proof/TD:All
Microblog - Critical - Unsupported - SA-CONTRIB-2017-007
By
Drupal Security Team
on
25 Jan 2017 at 18:18 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-007
Project:
microblog
(third-party module)
Version: 7.x
Date: 2017-Jan-25
Security risk:
19/25 (
Critical
) AC:None/A:None/CI:Some/II:Some/E:Proof/TD:All
OAuth - Less Critical - Access Bypass - SA-CONTRIB-2017-006
By
Drupal Security Team
on
25 Jan 2017 at 18:14 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-006
Project:
OAuth
(third-party module)
Version: 7.x
Date: 2017-January-25
Security risk:
8/25 (
Less Critical
) AC:Complex/A:Admin/CI:None/II:Some/E:Theoretical/TD:Default
Vulnerability: Access bypass
Pages
« first
‹ previous
…
78
79
80
81
82
83
84
85
86
…
next ›
last »
Subscribe with RSS
