Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Platform
Drupal Core
Drupal CMS
Drupal 11
Drupal AI
Solutions
Case studies
Fintech
Education
Retail
E-commerce
Healthcare
High Tech
Nonprofit
Government
Travel
Decoupled
Develop
Local Development Guide
Drupal user guide
Installing Drupal
API reference
All Documentation
Download
Download
Modules
Themes
Distributions
Issue queues
Get Support
Drupal CMS User Guide
Drupal user guide
Training
Drupal Slack
Find an Agency Partner
Find a Migration partner
Find Integrations & Hosting
Security Advisories
Connect
About the Community
Community Events
Jobs/Careers
DrupalCon
How to Contribute
Drupal in the News
Sign up for Drupal News
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
DDEV is the official local development tool of Drupal. And like Drupal, DDEV depends on the support of the open source community.
Learn how to support DDEV
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
SA-CONTRIB-2015-001 - OPAC - Cross Site Request Forgery (CSRF)
By
Drupal Security Team
on
7 Jan 2015 at 15:39 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2015-001
Project:
OPAC
(third-party module)
Version: 7.x
Date: 2015-January-07
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery
SA-CONTRIB-2014-128 - Organic Groups Menu - Access bypass
By
Drupal Security Team
on
17 Dec 2014 at 19:57 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-128
Project:
OG Menu
(third-party module)
Version: 6.x, 7.x
Date: 2014-December-17
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Access bypass, Information Disclosure
SA-CONTRIB-2014-127 - School Administration - Cross Site Scripting (XSS)
By
Drupal Security Team
on
17 Dec 2014 at 18:57 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-127
Project:
School Administration
(third-party module)
Version: 7.x
Date: 2014-December-17
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-126 - Open Atrium - Multiple vulnerabilities
By
Drupal Security Team
on
17 Dec 2014 at 18:09 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-126
Project:
Open Atrium
(third-party module)
Version: 7.x
Date: 2014-December-17
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Access bypass, Cross Site Request Forgery, Multiple vulnerabilities
SA-CONTRIB-2014-125 - Organic Groups Menu - Access bypass
By
Drupal Security Team
on
10 Dec 2014 at 20:08 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-125
Project:
OG Menu
(third-party module)
Version: 6.x, 7.x
Date: 2014-December-10
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Access bypass, Information Disclosure
SA-CONTRIB-2014-124 - Poll Chart - Cross Site Scripting (XSS)
By
Drupal Security Team
on
10 Dec 2014 at 20:05 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-124
Project:
Poll Chart Block
(third-party module)
Version: 7.x
Date: 2014-December-10
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-123 - Postal Code - Cross Site Scripting (XSS)
By
Drupal Security Team
on
10 Dec 2014 at 18:38 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-123
Project:
Postal Code
(third-party module)
Version: 7.x
Date: 2014-December-10
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-122 - MoIP - Cross Site Scripting (XSS)
By
Drupal Security Team
on
10 Dec 2014 at 18:28 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-122
Project:
MoIP
(third-party module)
Version: 7.x
Date: 2014-December-10
Security risk:
16/25 (
Critical
) AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-121 - Godwin's Law - Cross Site Scripting (XSS)
By
Drupal Security Team
on
10 Dec 2014 at 18:20 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-121
Project:
Godwin's Law
(third-party module)
Version: 7.x
Date: 2014-December-10
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting
SA-CONTRIB-2014-120 - Piwik Web Analytics - Information disclosure
By
Drupal Security Team
on
10 Dec 2014 at 15:21 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2014-120
Project:
Piwik Web Analytics
(third-party module)
Version: 7.x
Date: 2014-December-10
Security risk:
11/25 ( Moderately Critical) AC:None/A:User/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Information Disclosure
Pages
« first
‹ previous
…
97
98
99
100
101
102
103
104
105
…
next ›
last »
Subscribe with RSS