smileys 6.x-1.1

Git tag 6.x-1.1
Security update

This release fixes a Cross Site Scripting (XSS) security issue. Please see the security advisory for more information. SA-CONTRIB-2012-164 - Smiley module and Smileys module - Cross Site Scripting (XSS)

restws 7.x-2.0-alpha3

Git tag 7.x-2.0-alpha3
Security update
Insecure

Fixes a CSRF security issue. SA-CONTRIB-2012-162 - RESTful Web Services - Cross site request forgery (CSRF)

API change: The format extension in URL paths only works for GET requests now.
Example that still works:

GET http://example.com/node/123.json
GET http://example.com/node.json

Examples that do not work anymore:

restws 7.x-1.1

Git tag 7.x-1.1
Security update
Insecure

Fixes a CSRF security issue. SA-CONTRIB-2012-162 - RESTful Web Services - Cross site request forgery (CSRF)

API change: The format extension in URL paths only works for GET requests now.
Example that still works:

GET http://example.com/node/123.json

Examples that do not work anymore:

user_readonly 6.x-1.4

Git tag 6.x-1.4
Security update

#1444186: Password Changes / Make User Admin

SA-CONTRIB-2012-163 - User Read-Only - Permission escalation

user_readonly 7.x-1.4

Git tag 7.x-1.4
Security update
Bug fixes

#1444186: Password Changes / Make User Admin
#1372778: user_readonly breaks form api

SA-CONTRIB-2012-163 - User Read-Only - Permission escalation

feedback_reloaded 7.x-1.0-beta4

Git tag 7.x-1.0-beta4
Security update
Bug fixes

Includes important security update - http://drupal.org/node/1813550

Pages

Subscribe with RSS Subscribe to RSS - Security update