Security update

SA-CONTRIB-2010-086 - Prepopulate - Access Bypass

The Prepopulate module provides the ability for form fields to be pre-populated via the request sent for the form.

The module is vulnerable to access bypass which would allow a malicious user to change the value of fields they would not otherwise have access to alter.

See http://drupal.org/node/880696 for more information.

Advisory ID: DRUPAL-SA-CONTRIB-2010-086 - PREPOPULATE ACCESS BYPASS

The Prepopulate module provides the ability for form fields to be pre-populated via the request sent for the form.

The module is vulnerable to access bypass which would allow a malicious user to change the value of fields they would not otherwise have access to alter.

For more information see the Security Advisory at http://drupal.org/node/880696

The twenty-third maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

The eighteenth maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

Contains fixes for SA-CONTRIB-2010-084 - OpenID - Authentication bypass

Important: A bug in this release causes the update to malfunction. Do not install this version, but use 5.x-1.5 instead.

5.x-1.5 also contains an update for those users who had the misfortune to update to 5.x-1.4.

I apologize for the trouble I've caused to you.

Initial release of the Pathauto 6.x-2.x branch, in sync with the 7.x-1.x branch.

Make sure you are using the lastest stable version of Token module.