Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2010-046: Award - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-046
  • Project: Award (third-party module)
  • Version: 5.x, 6.x
  • Date: 2010-May-12
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2010-045 - Auto Assign Role - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-045
  • Project: Auto Assign Role (third-party module)
  • Version: 6.x
  • Date: 2010-May-12
  • Security risk: Less Critical
  • Exploitable from: Remote
  • Vulnerability: Access Bypass
Categories: Drupal 6.x

SA-CONTRIB-2010-044: Bibliography - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-044
  • Project: Bibliography (third-party module)
  • Version: 5.x, 6.x
  • Date: 2010-May-12
  • Security risk: Moderately Critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2010-043: Wordfilter - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-043
  • Project: Wordfilter (third-party module)
  • Version: 5.x, 6.x
  • Date: 2010-May-12
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2010-042: LoginToboggan - Session fixation

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-042
  • Project: LoginToboggan (third-party module)
  • Version: 5.x, 6.x
  • Date: 2010-05-12
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Session fixation
Categories: Drupal 5.x, Drupal 6.x

SA-CONTRIB-2010-041: ImageField - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-041
  • Project: ImageField (third-party module)
  • Version: 6.x
  • Date: 2010-May-5
  • Security risk: Less Critical
  • Exploitable from: Remote
  • Vulnerability: Access Bypass
Categories: Drupal 6.x

SA-CONTRIB-2010-040: FileField - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-040
  • Project: FileField (third-party module)
  • Version: 6.x
  • Date: 2010-May-5
  • Security risk: Moderately Critical
  • Exploitable from: Remote
  • Vulnerability: Access Bypass
Categories: Drupal 6.x

SA-CONTRIB-2010-039: CCK TableField - Cross Site Scripting

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-039
  • Project: CCK TableField (third-party module)
  • Version: 6.x
  • Date: 2010-May-05
  • Security risk: Moderately Critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 6.x

SA-CONTRIB-2010-038 - Privatemsg - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-038
  • Project: Privatemsg (third-party module)
  • Version: 6.x
  • Date: 2010-April-28
  • Security risk: Less Critical
  • Exploitable from: Remote
  • Vulnerability: Access Bypass
Categories: Drupal 6.x

SA-CONTRIB-2010-037 - Decisions - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2010-037
  • Project: Decisions (third-party module)
  • Version: 5.x, 6.x
  • Date: 2010-April-28
  • Security risk: Less Critical
  • Exploitable from: Remote
  • Vulnerability: Access Bypass
Categories: Drupal 5.x, Drupal 6.x

Pages

Subscribe with RSS Subscribe to Security advisories