Skip to main content Skip to search
Can we use first and third party cookies and web beacons to understand our audience, and to tailor promotions you see?
Main menu
  • Drupal.org home
  • Platform
    • Drupal Core
    • Drupal CMS
    • Drupal 11
    • Drupal AI
  • Solutions
    • Case studies
    • Fintech
    • Education
    • Retail
    • E-commerce
    • Healthcare
    • High Tech
    • Nonprofit
    • Government
    • Travel
    • Decoupled
  • Develop
    • Local Development Guide
    • Drupal user guide
    • Installing Drupal
    • API reference
    • All Documentation
  • Download
    • Download
    • Modules
    • Themes
    • Distributions
    • Issue queues
  • Get Support
    • Drupal CMS User Guide
    • Drupal user guide
    • Training
    • Drupal Slack
    • Find an Agency Partner
    • Find a Migration partner
    • Find Integrations & Hosting
    • Security Advisories
  • Connect
    • About the Community
    • Community Events
    • Jobs/Careers
    • DrupalCon
    • How to Contribute
    • Drupal in the News
    • Sign up for Drupal News
  • Support Drupal
    • The Drupal Association
    • Donate
    • Become a Partner
    • Become a Ripple Maker
    • Become an Organization Member
    • Drupal Swag Shop
  • Get Started
    • Try Drupal CMS
    • Try Hosting
Return to content

Search form

  • Log in, view profile, and more
    • Log in
    • Create account
Drupal.org
Announcement iconDDEV is the official local development tool of Drupal. And like Drupal, DDEV depends on the support of the open source community.
Learn how to support DDEV
Home

Security update

homebox 7.x-2.0-rc1

Git tag 7.x-2.0-rc1
Security update
Bug fixes
New features

Security: fixed a cross-site-scripting vulnerability for users with "administer homebox" permission.

  • Read more about homebox 7.x-2.0-rc1
  • View usage statistics for this release

og_tabs 7.x-1.1

Git tag 7.x-1.1
Security update

See DRUPAL-SA-CONTRIB-2015-077 - OG tabs - Cross Site Scripting (XSS)

  • Read more about og_tabs 7.x-1.1
  • View usage statistics for this release

course 6.x-1.2

Git tag 6.x-1.2
Security update

See SA-CONTRIB-2015-002 - Course - Cross Site Scripting (XSS)

There are no other changes in this release.

  • Read more about course 6.x-1.2
  • View usage statistics for this release

course 7.x-1.4

Git tag 7.x-1.4
Security update
Bug fixes
New features

See SA-CONTRIB-2015-002 - Course - Cross Site Scripting (XSS)

  • Read more about course 7.x-1.4
  • View usage statistics for this release

field_display_label 7.x-1.3

Git tag 7.x-1.3
Security update

SA-CONTRIB-2015-013 - Field Display Label - Cross Site Scripting (XSS).

  • Read more about field_display_label 7.x-1.3
  • View usage statistics for this release

todo_filter 6.x-1.1

Git tag 6.x-1.1
Security update

See SA-CONTRIB-2015-011 - Todo Filter - Cross Site Request Forgery (CSRF)

Also includes earlier fix:
#803224: Checking an item off the list doesn't make it permanent

  • Read more about todo_filter 6.x-1.1
  • View usage statistics for this release

Pages

  • « first
  • ‹ previous
  • …
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • …
  • next ›
  • last »
Subscribe with RSS Subscribe to RSS - Security update

News items

  • News
  • Planet Drupal
  • Social media
  • Sign up for Drupal news
  • Security advisories
  • Jobs

Our community

  • Community
  • Services, Training & Hosting
  • Contributor guide
  • Groups & meetups
  • DrupalCon
  • Code of conduct

Documentation

  • Documentation
  • Drupal Guide
  • Drupal User Guide
  • Developer docs
  • API.Drupal.org

Drupal code base

  • Download & Extend
  • Drupal core
  • Modules
  • Themes
  • Distributions

Governance of community

  • About
  • Web accessibility
  • Drupal Association
  • About Drupal.org
  • Terms of service
  • Privacy policy

Drupal is a registered trademark of Dries Buytaert.