webform_validation 6.x-1.6

Git tag 6.x-1.6
Security update

This release is identical to 6.x-1.5 except for the fix for security issue #98053: Webform Validation Cross Site Scripting (XSS).

SA-CONTRIB-2014-014 - Webform Validation - Cross Site Scripting (XSS)

http://drupalcode.org/project/webform_validation.git/commitdiff/51e0d9a

mayo 7.x-1.3

Git tag 7.x-1.3
Security update
Insecure

See SA-CONTRIB-2014-016 - Mayo Theme - XSS Vulnerability

modalframe 6.x-1.9

Git tag 6.x-1.9
Security update

This release fixes the security vulnerability described in SA-CONTRIB-2014-012:

https://drupal.org/node/2189751

Thanks to berliner for the fix!

push_notifications 7.x-1.1

Git tag 7.x-1.1
Security update

SA-CONTRIB-011 - Push Notifications - Information Disclosure

  • Improve filename conventions for APNS certificate files
  • Cleanup project variables after module gets uninstalled

tagadelic 6.x-1.5

Git tag 6.x-1.5
Security update

SA-CONTRIB-2014-009 - Tagadelic - Information Disclosure

Updated README and other minor changes.

services 7.x-3.7

Git tag 7.x-3.7
Security update
Bug fixes
Insecure

SA-CONTRIB-2014-010 Services - Access Bypass and Privilege Escalation.

Fixes error in access to comments.
Fixes a bug is user resource with roles
Issue #2158563: Services should return a 403 instead of a 401 for access denied by deviant integral

Note, resource access callbacks now return 403 instead of 401.

Pages

Subscribe with RSS Subscribe to RSS - Security update