gutenberg 8.x-1.7

Git tag 8.x-1.7
Insecure
Security update
Bug fixes

This release was followed up by 8.x-1.8 and all users interested in this release should actually use 8.x-1.8 or later release. However, since this release has relevant release notes with fixed issues it is published for posterity.

Security release

All routing paths defined on the module (gutenberg.routing.yml) have "access content" permission which allows anonymous users to access all those routes.

imagecache_external 8.x-1.1

Git tag 8.x-1.1
Security update
Bug fixes
New features

Imagecache External - Critical - Insecure session token management - SA-CONTRIB-2019-065

Since the first release back in 2016, a lot of work has been done. This release also includes a security update.

scroll_to_top 7.x-2.2

Git tag 7.x-2.2
Security update

Fix XSS vulnerability from administration settings.

scroll to top - Moderately critical - Cross site scripting - SA-CONTRIB-2019-061

super_login 8.x-1.3

Git tag 8.x-1.3
Security update
Insecure

Fixes to prevent XXS on administrative input fields.

Super Login - Moderately critical - Cross site scripting - SA-CONTRIB-2019-062

super_login 7.x-1.4

Git tag 7.x-1.4
Security update

Fixes to prevent XXS on administrative input fields.

Super Login - Moderately critical - Cross site scripting - SA-CONTRIB-2019-062

elf 8.x-1.2

Git tag 8.x-1.2
Security update

Add a CSRF token that protects the redirect URL from the open use.

External Links Filter - Moderately critical - Open Redirect Vulnerability - SA-CONTRIB-2019-063

Pages

Subscribe with RSS Subscribe to RSS - Security update