SA-CONTRIB-2014-072 - Freelinking, Freelinking Case Tracker - Access bypass

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-072
  • Project: freelinking (third-party module)
  • Project: freelinking case tracker (third-party module)
  • Version: 6.x, 7.x
  • Date: 2014-July-23
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass

SA-CONTRIB-2014-071 - FileField - Access bypass

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-071
  • Project: FileField (third-party module)
  • Version: 6.x
  • Date: 2014-July-16
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass

SA-CORE-2014-003 - Drupal core - Multiple vulnerabilities

  • Advisory ID: DRUPAL-SA-CORE-2014-003
  • Project: Drupal core
  • Version: 6.x, 7.x
  • Date: 2014-July-16
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Multiple vulnerabilities

SA-CONTRIB-2014-070 - Password Policy - Access Bypass

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-070
  • Project: Password Policy (third-party module)
  • Version: 6.x, 7.x
  • Date: 2014-July-16
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass

SA-CONTRIB-2014-069 - Logintoboggan - Access Bypass and Cross Site Scripting (XSS)

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-069
  • Project: LoginToboggan (third-party module)
  • Version: 7.x
  • Date: 2014-July-09
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting, Access bypass

SA-CONTRIB-2014-068 - Pane - XSS

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-068
  • Project: Pane (third-party module)
  • Version: 7.x
  • Date: 2014-July-02
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting

SA-CONTRIB-2014-067 - Meta Tags Quick - Multiple vulnerabilities

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-067
  • Project: Meta tags quick (third-party module)
  • Version: 7.x
  • Date: 2014-July-02
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting, Open Redirect

SA-CONTRIB-2014-066 - Node Access Keys - Access Bypass

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-066
  • Project: Node Access Keys (third-party module)
  • Version: 7.x
  • Date: 2014-July-02
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass

SA-CONTRIB-2014-065 - Custom Meta - Cross Site Scripting (XSS)

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-065
  • Project: Custom Meta (third-party module)
  • Version: 6.x, 7.x
  • Date: 2014-June-18
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting

SA-CONTRIB-2014-064 -Course - Access bypass

  • Advisory ID: DRUPAL-SA-CONTRIB-2014-064
  • Project: Course (third-party module)
  • Version: 6.x, 7.x
  • Date: 2014-June-18
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass

Pages

Subscribe with RSS Subscribe to Security advisories