Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2013-096 - Entity reference - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-096
  • Project: Entity reference (third-party module)
  • Version: 7.x
  • Date: 2013-November-20
  • Security risk: Not critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

SA-CONTRIB-2013-095 - Organic Groups - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-095
  • Project: Organic groups (third-party module)
  • Version: 7.x
  • Date: 2013-November-20
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

SA-CONTRIB-2013-094 - EU Cookie Compliance - Cross Site Scripting (XSS)

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-094
  • Project: EU Cookie Compliance (third-party module)
  • Version: 7.x
  • Date: 2013-November-20
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 7.x

SA-CONTRIB-2013-093 - Invitation - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-093
  • Project: Invitation (third-party module)
  • Version: 7.x
  • Date: 2013-November-20
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

SA-CONTRIB-2013-092 - Misery - Denial of Service (DOS) vulnerability.

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-092
  • Project: Misery (third-party module)
  • Version: 6.x, 7.x
  • Date: 2013-November-13
  • Security risk: Not critical
  • Exploitable from: Remote
  • Vulnerability: Multiple vulnerabilities
Categories: Drupal 6.x, Drupal 7.x

SA-CONTRIB-2013-091 - Groups, Communities and Co (GCC) - Access Bypass

By Drupal Security Team on
Categories: Drupal 7.x

SA-CONTRIB-2013-090 - Revisioning - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-090
  • Project: Revisioning (third-party module)
  • Version: 7.x
  • Date: 2013-November-13
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

SA-CONTRIB-2013-089 - Node Access Keys - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-089
  • Project: Node Access Keys (third-party module)
  • Version: 7.x
  • Date: 2013-November-06
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

SA-CONTRIB-2013-088 - Secure Pages - Missing Encryption of Sensitive Data

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-088
  • Project: Secure Pages (third-party module)
  • Version: 6.x
  • Date: 2013-November-06
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Missing Encryption of Sensitive Data
Categories: Drupal 6.x

SA-CONTRIB-2013-087 - Payment for Webform - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2013-087
  • Project: Payment for Webform (third-party module)
  • Version: 7.x
  • Date: 2013-November-06
  • Security risk: Not critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

Pages

Subscribe with RSS Subscribe to Security advisories