blockqueue 6.x-1.9

Git tag 6.x-1.9
Security update

This release fixes a security issue. See SA-CONTRIB-2014-126 - Blockqueue - Cross Site Scripting for details.
A confirmation form has been added before block deletion from a blockqueue.

school_administration 7.x-1.8

Git tag 7.x-1.8
Security update

Fix for SA-CONTRIB-2014-127 - School Administration - Cross Site Scripting (XSS)

moip 7.x-1.4

Git tag 7.x-1.4
Security update

Security update to improve handling of external data that is sent to the notification page callback, that could be exploited for a XSS attack.

SA-CONTRIB-2014-122 - MoIP - Cross Site Scripting (XSS)

postal_code 7.x-1.9

Git tag 7.x-1.9
Security update

Adds filtering to several user editable fields to mitigate the introduction of code, rather than the plain text which this module only ever intended to handle.

SA-CONTRIB-2014-123 - Postal Code - Cross Site Scripting (XSS)

og_menu 7.x-3.0

Git tag 7.x-3.0
Security update
Bug fixes
New features

Fix for Access bypass on editing og menus
SA-CONTRIB-2014-125 - Organic Groups Menu - Access bypass

Other changes:

Changes to og_menu
- improved help text
- add option to hide help text
- improve upgrade path
- improve javascripts to handle selects and autocompletes better
- support "any" form widget
- general code improvements

og_menu 7.x-2.3

Git tag 7.x-2.3
Security update
Insecure

Fix for Access bypass on editing og menus
SA-CONTRIB-2014-125 - Organic Groups Menu - Access bypass

Pages

Subscribe with RSS Subscribe to RSS - Security update