Security advisories

Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2009-100 - AddToAny - Cross Site Scripting

By undefined on 11 Nov 2009 at 22:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-100
Project: AddToAny (third-party module)
Version: 5.x, 6.x
Date: 2009 November 11
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-099 - RootCandy Theme - Cross Site Scripting

By meba on 11 Nov 2009 at 21:28 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-099
Project: RootCandy (third-party theme)
Version: 6.x
Date: 2009-November-11
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-098 - Zoomify - Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 22:09 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-098
Project: Zoomify (third-party module)
Version: 5.x, 6.x
Date: 2009-November-4
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-097 - Organic Groups Vocabulary - Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 22:04 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-097
Project: Organic Groups Vocabulary (third-party module)
Version: 6.x
Date: 2009-November-4
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-096 - Link - Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 20:05 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-096
Project: Link (third-party module)
Version: 5.x, 6.x
Date: 2009-November-4
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-095 - Smartqueue OG - Access Bypass

By Drupal Security Team on 4 Nov 2009 at 20:02 UTC

Advisory ID: SA-CONTRIB-2009-095
Project: Smartqueues for Organic Groups (smartqueue_og) (third-party module)
Version: 6.x
Date: 2009 November 4
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2009-094 - NGP COO/CWP Integration (crmngp) - Multiple Vulnerabilities

By coltrane on 4 Nov 2009 at 19:58 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-094
Project: NGP COO/CWP Integration (crmngp) (third-party module)
Version: 6.x
Date: 2009-November-4
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross-site scripting and Access bypass

SA-CONTRIB-2009-093 - Temporary Invitation - Cross Site Scripting

By meba on 4 Nov 2009 at 19:40 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-093
Project: Temporary Invitation (third-party module)
Version: 5.x
Date: 2009 November 4
Security risk: Less Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-092 - S5 Presentation Player Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 19:24 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-092
Project: S5 Presentation Player (third-party module)
Version: 6.x
Date: 2009 November 4
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-091 - Node Hierarchy - Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 19:02 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-091
Project: Node Hierarchy (third-party module)
Version: 6.x, 5.x
Date: 2009 November 4
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

Pages

Subscribe with RSS