Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2009-066 - Organic Groups - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-066
  • Project: Organic Groups (third-party module)
  • Version: 5.x, 6.x
  • Date: 2009-September-30
  • Security risk: Moderately Critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2009-065 - Browscap - Cross Site Scripting

By greggles on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-065
  • Project: Browscap (third-party module)
  • Version: 5.x, 6.x
  • Date: 2009-September-30
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2009-064 - Bibliography module - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-064
  • Project: Bibliography module (third-party module)
  • Version: 6.x
  • Date: 2009-September-30
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 6.x

SA-CONTRIB-2009-063 - XML sitemap - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-063
  • Project: XML sitemap (third-party module)
  • Version: 5.x
  • Date: 2009-September-30
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x

SA-CONTRIB-2009-062 - Devel - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-062
  • Project: Devel (third-party module)
  • Version: 5.x, 6.x
  • Date: 2009-September-23
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2009-061 - Markdown Preview - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-061
  • Project: Markdown Preview (third-party module)
  • Version: 6.x
  • Date: 2009 September 23
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 6.x

SA-CONTRIB-2009-060 - Meta tags (Nodewords) - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-060
  • Project: Meta tags / Nodewords (third-party module)
  • Version: 6.x
  • Date: 2009-September-23
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 6.x

SA-CORE-2009-008 - Drupal core - Multiple vulnerabilities

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CORE-2009-008
  • Project: Drupal core
  • Version: 5.x, 6.x
  • Date: 2009-September-16
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Multiple vulnerabilities
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2009-059 - OpenID - Multiple vulnerabilities

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-059
  • Project: OpenID (third-party module)
  • Version: 5.x
  • Date: 2009-September-16
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Impersonation, cross site request forgery
Categories: Drupal 5.x

SA-CONTRIB-2009-058 - Comment RSS - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2009-058
  • Project: Comment RSS (third-party module)
  • Version: 5.x, 6.x
  • Date: 2009-September-16
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 5.x, Drupal 6.x

Pages

Subscribe with RSS Subscribe to Security advisories