bible 7.x-1.7

Git tag 7.x-1.7
Security update

Bible - Critical - Multiple Vulnerabilities - SA-CONTRIB-2018-003

Fixes an SQL injection vulnerability which gave users view and update access to Bible notes from other users.

Besides this vulnerability others may have been fixed as well as many other queries were rewritten to use secure Drupal functions, instead of building SQL from sometimes questionable sources.

Upgrading this module is strongly recommended.

stacks 8.x-1.1

Git tag 8.x-1.1
Security update

This version fixes the existing vulnerability on sites with the Stacks - Content Feed submodule enabled, when requesting grid builds through AJAX.

me 7.x-1.3

Git tag 7.x-1.3
Security update
Bug fixes

Fixes me aliases - Highly critical - Arbitrary code execution - SA-CONTRIB-2017-097

This release fixes issues:
#2539462: Additional URL parameters break me page handling
#2076691: Arguments passed to me_handler() in the wrong order

panopoly_core 7.x-1.49

Git tag 7.x-1.49
Security update

Fixes Panopoly Core - Moderately critical - Cross Site Scripting - SA-CONTRIB-2017-093

ckeditor_uploadimage 8.x-1.5

Git tag 8.x-1.5
Security update

Issue #2930395 by mertres: Fixed Arbitrary file upload in CKEditor Upload Image.

node_feedback 7.x-1.3

Git tag 7.x-1.3
Security update

Node access tag added when fetching the node title.

Node Feedback - Moderately Critical - Access Bypass - SA-CONTRIB-2017-092

Pages

Subscribe with RSS Subscribe to RSS - Security update