Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2011-040 Author Pane access bypass

By Drupal Security Team on 7 Sep 2011 at 14:32 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2011-040
Project: Author Pane (third-party module)
Version: 6.x
Date: 2011-September-7
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2011-039 - Bot Alarm - Multiple vulnerabilities

By Drupal Security Team on 31 Aug 2011 at 17:53 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2011-039
Project: Bot Alarm (third-party module)
Version: 6.x
Date: 2011-August-31
Security risk: Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting, Cross Site Request Forgery

SA-CONTRIB-2011-038 - Taxonomy Views Integrator - Cross Site Scripting

By Drupal Security Team on 31 Aug 2011 at 13:21 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2011-038
Project: Taxonomy Views Integrator (third-party module)
Version: 6.x
Date: 2011-August-31
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2011-037- Node Invite - Cross Site Scripting

By Drupal Security Team on 31 Aug 2011 at 13:19 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2011-037
Project: Node Invite (third-party module)
Version: 6.x
Date: 2011-August-31
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2011-036 - Addresses - Cross Site Scripting

By Drupal Security Team on 17 Aug 2011 at 17:56 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2011-036
Project: Addresses (third-party module)
Version: 6.x
Date: 2011-August-17
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2011-035 Forward module - Open redirect

By Drupal Security Team on 17 Aug 2011 at 17:16 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2011-035
Project: Forward (third-party module)
Version: 6.x, 7.x
Date: 2011-August-17
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Open redirect

Pages

Subscribe with RSS