glightbox 1.0.16

Git tag 1.0.16
Security update

This release contains a fix for XSS vulnerability in data-* attributes:
https://security.drupal.org/node/183076

Run module update with composer option -W (--with-all-dependencies), because there is a new added dependency DOM Purify.
composer update drupal/glightbox -W

etracker 8.x-3.1

Git tag 8.x-3.1
Security update
Bug fixes

Contributors (5)

Anybody, anybody, design.er, grevil, sunlix

Changelog

Issues: 3 issues resolved.

cookies 1.2.15

Git tag 1.2.15
Security update
Insecure

Fixed issues #183322 and #183329

eu_cookie_compliance 8.x-1.26

Git tag 8.x-1.26
Security update
  • Fix security issue involving XSS, Mitigated by need to have admin access
  • Issue #3522883 by danrod, joachim: Link to the settings form in the error message 'Try accessing the EU Cookie Compliance settings page and re-save the form.'
  • Issue #3489452 by svenryen: With PHP 7, eu_cookie_compliance.libraries.yml causes Drupal to crash
  • Issue #3404608 by ankondrat4, svenryen: Incorrect user's IP address when uses more than one proxy server
  • Issue #3474433: Update logo for compatibility with Project Browser

simple_klaro 1.10.0

Git tag 1.10.0
Security update
  • Restrict administer simple klaro permission
  • Sanitize data-href on anchor elements

bookable_calendar 2.2.13

Git tag 2.2.13
Security update

Adding Access Checks for Booking Contact & Updated default view config for booking contacts.

Pages

Subscribe with RSS Subscribe to RSS - Security update