Skip to main content Skip to search
Can we use first and third party cookies and web beacons to understand our audience, and to tailor promotions you see?
Main menu
  • Drupal.org home
  • Discover Drupal
    • Drupal Core
    • Drupal CMS
    • Drupal AI
    • Case Studies
    • Drupal for Government
    • Drupal for Higher Education
    • Drupal for Nonprofit
    • Drupal for eCommerce
    • Drupal for FinTech
    • Drupal for Healthcare
    • Drupal for Media & Publishing
  • Build with Drupal
    • Download Drupal
    • Documentation
    • Getting started
    • Local Development Guide
    • Developer Resources
    • Drupal CMS User Guide
    • Drupal User Guide
    • API
    • Modules
    • Themes
    • Distributions
    • Issue queues
    • Security Advisories
  • Partners & Services
    • Find a Drupal Certified Partner
    • Become a Drupal Certified Partner
    • Find a Hosting Provider
    • Find a Migration Partner
    • Find Training
    • Drupal Steward
  • Community
    • About the Community
    • How to Contribute
    • DrupalCon
    • Events
    • Jobs / Careers
    • News & Blogs
    • Forum
    • Slack
    • Newsletters
    • Drupal Swag Shop
  • Support Drupal
    • The Drupal Association
    • Donate
    • Become a Partner
    • Become a Ripple Maker
    • Become an Organization Member
    • Drupal Swag Shop
  • Get Started
    • Try Drupal CMS
    • Try Hosting
Return to content

Search form

  • Log in, view profile, and more
    • Log in
    • Create account
Drupal.org
Announcement iconStill on Drupal 7? Security support for Drupal 7 ended on 5 January 2025. Please visit our Drupal 7 End of Life resources page to review all of your options.
Migration Resource Center
Home

Security update

clean_theme 7.x-1.3

Git tag 7.x-1.3
Security update
Bug fixes

Fix for SA-CONTRIB-2013-030 - Clean Theme - Cross Site Scripting (XSS)

check_plain() and check_markup() is added to avoid XSS.

  • Read more about clean_theme 7.x-1.3
  • View usage statistics for this release

fresh 7.x-1.4

Git tag 7.x-1.4
Security update
Bug fixes

check_plain() and check_markup() is added to avoid XSS.

SA-CONTRIB-2013-025 - Fresh Theme - Cross Site Scripting (XSS)

  • Read more about fresh 7.x-1.4
  • View usage statistics for this release

business 7.x-1.8

Git tag 7.x-1.8
Security update
Bug fixes

check_plain() and check_markup() is added to page--front.tpl.php to avoid XSS.

SA-CONTRIB-2013-029 - Business theme - Cross Site Scripting (XSS)

  • Read more about business 7.x-1.8
  • View usage statistics for this release

elegant_theme 7.x-1.1

Git tag 7.x-1.1
Security update
  • XSS via slide url - see SA-CONTRIB-2012-128 - Elegant Theme - Cross Site Scripting (XSS)
  • Read more about elegant_theme 7.x-1.1
  • View usage statistics for this release

ctools 6.x-1.9

Git tag 6.x-1.9
Security update
Bug fixes
Insecure

Changes since 6.x-1.8:

  • Read more about ctools 6.x-1.9
  • View usage statistics for this release

ctools 7.x-1.1

Git tag 7.x-1.1
Security update
Bug fixes
Insecure

Changes since 7.x-1.0:

  • Read more about ctools 7.x-1.1
  • View usage statistics for this release

Pages

  • « first
  • ‹ previous
  • …
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • …
  • next ›
  • last »
Subscribe with RSS Subscribe to RSS - Security update

News items

  • News
  • Planet Drupal
  • Social media
  • Sign up for Drupal news
  • Security advisories
  • Jobs

Our community

  • Community
  • Services, Training & Hosting
  • Contributor guide
  • Groups & meetups
  • DrupalCon
  • Code of conduct

Documentation

  • Documentation
  • Drupal Guide
  • Drupal User Guide
  • Developer docs
  • API.Drupal.org

Drupal code base

  • Download & Extend
  • Drupal core
  • Modules
  • Themes
  • Distributions

Governance of community

  • About
  • Web accessibility
  • Drupal Association
  • About Drupal.org
  • Terms of service
  • Privacy policy

Drupal is a registered trademark of Dries Buytaert.