Security advisories

Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2013-024 - Creative Theme - Cross Site Scripting (XSS)

By Drupal Security Team on 27 Feb 2013 at 20:48 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-024
Project: Creative Theme (third-party theme)
Version: 7.x
Date: 2013-February-27
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CORE-2013-002 - Drupal core - Denial of service

By Drupal Security Team on 20 Feb 2013 at 20:50 UTC

Advisory ID: DRUPAL-SA-CORE-2013-002
Project: Drupal core
Version: 7.x
Date: 2013-February-20
Security risk: Critical
Exploitable from: Remote
Vulnerability: Denial of service

SA-CONTRIB-2013-023 - Varnish module - Cross Site Scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 20:43 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-023
Project: Varnish HTTP Accelerator Integration (third-party module)
Version: 6.x, 7.x
Date: 2013-February-20
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-022 - Menu Reference - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 15:00 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-022
Project: Menu Reference (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-021 - Display Suite - Cross Site Scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:51 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-021
Project: Display Suite (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-020 - Ubercart - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-020
Project: Ubercart (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-019 - Ubercart Views - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-019
Project: Ubercart Views (third-party module)
Version: 6.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-018 - Taxonomy Manager - Cross Site Request Forgery (CSRF)

By Drupal Security Team on 20 Feb 2013 at 14:37 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-018
Project: Taxonomy Manager (third-party module)
Version: 6.x, 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Request Forgery

SA-CONTRIB-2013-017 - Yandex.Metrics - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:30 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-017
Project: Yandex.Metrics (third-party module)
Version: 6.x, 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-016 - Banckle Chat - Access bypass - Unsupported

By Drupal Security Team on 13 Feb 2013 at 16:24 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-016
Project: Banckle Chat (third-party module)
Version: 7.x
Date: 2013-February-13
Security risk: Highly critical
Exploitable from: Remote
Vulnerability: Access bypass

Pages

Subscribe with RSS