mailjet 7.x-2.9

Git tag 7.x-2.9
Security update
Insecure

Resolves SA-CONTRIB-2017-005.

This release requires the PHPMailer library to be downloaded and installed separately, without doing so it is possible this update may break the site; see the included README.txt and README.md files for full details.

autocomplete_deluxe 7.x-2.2

Git tag 7.x-2.2
Security update

See Autocomplete Deluxe - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2017-003. Fixed terms not beeing escaped properly in JS code.

dfp 7.x-1.5

Git tag 7.x-1.5
Security update
Bug fixes

Doubleclick for Publishers (DFP) - Less Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2017-002

permissions_by_term 8.x-1.11

Git tag 8.x-1.11
Security update
Bug fixes
Insecure

Permissions by Term -- Critical - Multiple vulnerabilities - SA-CONTRIB-2017-001

- Fixes critical security bug: Enabling the module gives access to all unpublished nodes as anonymous user - thanks to the Drupal security team for assisting in the fix and thanks to user cedric_a for reporting the issue.

permissions_by_term 8.x-1.09

Git tag 8.x-1.09
Insecure
Security update

Fixed critical issue with publishing "all" unpublished content after enabling PBT. Thanks to user cedric_a for reporting via security.drupal.org!

cshs 8.x-1.0-beta2

Git tag 8.x-1.0-beta2
Security update
Bug fixes
New features
  1. #2792375: Term references not translated
  2. #2833531: XSS vulnerability in "level_labels" configuration field

Pages

Subscribe with RSS Subscribe to RSS - Security update