sitedoc 6.x-1.5

Git tag 6.x-1.5
Security update

See SA-CONTRIB-2015-074 - Site Documentation - Cross Site Scripting (XSS)

Minor typo fixes.

image_title 7.x-1.1

Git tag 7.x-1.1
Security update

Fixes DRUPAL-SA-CONTRIB-2015-076 - Image Title - Cross Site Scripting (XSS)

perfecto 7.x-1.2

Git tag 7.x-1.2
Security update

See SA-CONTRIB-2015-075 - Perfecto - Open Redirect

commerce_ogone 7.x-1.5

Git tag 7.x-1.5
Security update

See SA-CONTRIB-2015-072 - Commerce Ogone - Access bypass

webform 7.x-4.4

Git tag 7.x-4.4
Security update
Bug fixes
New features
Insecure

This release of 7.x-4.x fixes two security issues, a number of bugs, and introduces new features. Immediate updating is strongly recommended for all users of the 7.x-4.x branch. See SA-CONTRIB-2015-063 - Webform - Cross Site Scripting (XSS) for details.

webform 7.x-3.22

Git tag 7.x-3.22
Security update
Insecure

This release of 7.x-3.x fixes one security issue. Updating is strongly recommended for all users of the 7.x-3.x branch. See SA-CONTRIB-2015-063 - Webform - Cross Site Scripting (XSS) for details.

Security issue

When a webform is made available as a block, the node's title is used as the default block title. This title is not sufficiently sanitized, leading to a Cross Site Scripting (XSS) vulnerability.

Pages

Subscribe with RSS Subscribe to RSS - Security update