heartbeat 6.x-4.12

Git tag 6.x-4.12
Security update

This release is basically to fix a vulnerability in the submodules "shouts" and "heartbeat_comments". The problem was a CSRF attach was possible.

SA-CONTRIB-2012-137 - Heartbeat - Cross Site Request Forgery (CSRF) in heartbeat_comments

apachesolr_autocomplete 7.x-1.3

Git tag 7.x-1.3
Security update

Security release. Added a check_plain() to prevent attacks.

SA-CONTRIB-2012-136 - Apache Solr Search Autocomplete - Cross Site Scripting (XSS)

apachesolr_autocomplete 6.x-1.4

Git tag 6.x-1.4
Security update

Security release. Added a check_plain() to prevent attacks.

SA-CONTRIB-2012-136 - Apache Solr Search Autocomplete - Cross Site Scripting (XSS)

activism 6.x-2.1

Git tag 6.x-2.1
Security update

Slight tweak to campaign viewing.

SA-CONTRIB-2012-129 - Activism - Access Bypass

email 6.x-1.3

Git tag 6.x-1.3
Security update
Insecure

Changes since 6.x-1.2:

email 7.x-1.2

Git tag 7.x-1.2
Security update

Changes since 7.x-1.1:

Pages

Subscribe with RSS Subscribe to RSS - Security update