Security advisories

Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2013-028 - Responsive Blog Theme - Cross Site Scripting (XSS)

By Drupal Security Team on 27 Feb 2013 at 20:53 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-028
Project: Responsive Blog (third-party theme)
Version: 7.x
Date: 2013-February-27
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-027 - Professional theme - Cross Site Scripting (XSS)

By Drupal Security Team on 27 Feb 2013 at 20:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-027
Project: Professional (third-party theme)
Version: 7.x
Date: 2013-February-06
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-026 - Best Responsive Theme - Cross Site Scripting (XSS)

By Drupal Security Team on 27 Feb 2013 at 20:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-026
Project: Best Responsive (third-party theme)
Version: 7.x
Date: 2013-February-27
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-025 - Fresh Theme - Cross Site Scripting (XSS)

By Drupal Security Team on 27 Feb 2013 at 20:51 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-025
Project: Fresh theme (third-party theme)
Version: 7.x
Date: 2013-February-27
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-024 - Creative Theme - Cross Site Scripting (XSS)

By Drupal Security Team on 27 Feb 2013 at 20:48 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-024
Project: Creative Theme (third-party theme)
Version: 7.x
Date: 2013-February-27
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CORE-2013-002 - Drupal core - Denial of service

By Drupal Security Team on 20 Feb 2013 at 20:50 UTC

Advisory ID: DRUPAL-SA-CORE-2013-002
Project: Drupal core
Version: 7.x
Date: 2013-February-20
Security risk: Critical
Exploitable from: Remote
Vulnerability: Denial of service

SA-CONTRIB-2013-023 - Varnish module - Cross Site Scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 20:43 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-023
Project: Varnish HTTP Accelerator Integration (third-party module)
Version: 6.x, 7.x
Date: 2013-February-20
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-022 - Menu Reference - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 15:00 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-022
Project: Menu Reference (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-021 - Display Suite - Cross Site Scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:51 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-021
Project: Display Suite (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-020 - Ubercart - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-020
Project: Ubercart (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

Pages

Subscribe with RSS