Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Discover Drupal
Drupal Core
Drupal CMS
Drupal AI
Case Studies
Drupal for Government
Drupal for Higher Education
Drupal for Nonprofit
Drupal for eCommerce
Drupal for FinTech
Drupal for Healthcare
Drupal for Enterprise
Drupal for Retail
Drupal for Travel & Tourism
Build with Drupal
Download Drupal
Documentation
Getting started
Local Development Guide
Developer Resources
Drupal CMS User Guide
Drupal User Guide
API
Modules
Themes
Recipes
Site Templates
Issue queues
Security Advisories
Partners & Services
Find a Drupal Certified Partner
Become a Drupal Certified Partner
Find a Hosting Provider
Find a Migration Partner
Find Training
Drupal Steward
Community
About the Community
How to Contribute
DrupalCon
Events
Jobs / Careers
News & Blogs
Forum
Slack
Newsletters
Drupal Swag Shop
Support Drupal
The Drupal Association
Donate
Become a Partner
Become a Ripple Maker
Become an Organization Member
Drupal Swag Shop
Get Started
Try Drupal CMS
Try Hosting
Return to content
Search form
Search
Log in
Create account
Security advisories
Show advisories for
only Drupal Core
,
only contributed projects
, or
only
PSAs
LDAP - Critical - Data Injection - SA-CONTRIB-2017-052
By
Drupal Security Team
on
31 May 2017 at 16:27 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-052
Project:
Lightweight Directory Access Protocol (LDAP)
(third-party module)
Version: 7.x
Date: 2017-May-31
Security risk:
15/25 (
Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Proof/TD:All
Vulnerability: Multiple vulnerabilities
Site Verify - Moderately Critical - Cross Site Scripting - SA-CONTRIB-2017-051
By
Drupal Security Team
on
24 May 2017 at 16:37 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-051
Project:
Site verification
(third-party module)
Version: 7.x
Date: 2017-May-24
Security risk:
14/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Proof/TD:Default
Vulnerability: Multiple vulnerabilities
Custom Landing Page Builder - Unsupported - SA-CONTRIB-2017-050
By
Drupal Security Team
on
24 May 2017 at 13:59 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-050
Project:
landing_page
(third-party module)
Date: 24-May-2017
Display Suite - Moderately Critical - Cross Site Scripting - SA-CONTRIB-2017-049
By
Drupal Security Team
on
17 May 2017 at 16:37 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-049
Project:
Display Suite
(third-party module)
Version: 8.x
Date: 2017-May-17
Security risk:
13/25 (
Moderately Critical
) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Cross Site Scripting
Bootstrap - Critical - Information Disclosure - SA-CONTRIB-2017-048
By
Drupal Security Team
on
17 May 2017 at 16:32 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-048
Project:
Bootstrap
(third-party module)
Version: 8.x
Date: 2017-May-17
Security risk:
18/25 (
Critical
) AC:None/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Information Disclosure
DRD Agent - Critical - Multiple vulnerabilities - SA-CONTRIB-2017-047
By
Drupal Security Team
on
10 May 2017 at 15:48 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-047
Project:
DRD agent
(third-party module)
Version: 6.x, 7.x, 8.x
Date: 2017-May-10
Security risk:
19/25 (
Critical
) AC:Complex/A:None/CI:All/II:All/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery, Open Redirect
Drupal Remote Dashboard - Critical - Weak encryption keys - SA-CONTRIB-2017-046
By
Drupal Security Team
on
10 May 2017 at 15:39 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-046
Project:
Drupal Remote Dashboard
(third-party module)
Version: 7.x, 8.x
Date: 2017-May-10
Security risk:
17/25 (
Critical
) AC:Complex/A:None/CI:All/II:All/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass, Information Disclosure
Webform Multiple file upload - Moderately Critical - Access bypass - SA-CONTRIB-2017-045
By
Drupal Security Team
on
10 May 2017 at 14:19 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-045
Project:
Webform Multiple File Upload
(third-party module)
Version: 7.x
Date: 2017-May-10
Security risk:
10/25 ( Moderately Critical) AC:Basic/A:User/CI:None/II:Some/E:Theoretical/TD:Default
Vulnerability: Access bypass
Media - Moderately Critical - Multiple vulnerabilities - SA-CONTRIB-2017-044
By
Drupal Security Team
on
10 May 2017 at 12:52 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-044
Project:
Media
(third-party module)
Version: 7.x
Date: 2017-May-10
Security risk:
16/25 ( Critical) AC:Complex/A:User/CI:All/II:All/E:Theoretical/TD:Default
Vulnerability: Information Disclosure, Arbitrary PHP code execution, Multiple vulnerabilities
shib_auth Moderately Critical - Multiple vulnerabilities - SA-CONTRIB-2017-043
By
Drupal Security Team
on
3 May 2017 at 15:35 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2017-043
Project:
Shibboleth authentication
(third-party module)
Version: 7.x
Date: 2017-May-03
Security risk:
13/25 ( Moderately Critical) AC:None/A:None/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass, Information Disclosure
Pages
« first
‹ previous
…
74
75
76
77
78
79
80
81
82
…
next ›
last »
Subscribe with RSS
