Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2010-063 - Studio theme pack - Cross Site Scripting

By Drupal Security Team on 16 Jun 2010 at 18:06 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-063
Project: Studio theme pack (third-party theme)
Version: 6.x
Date: 2010-June-16
Security risk: Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2010-062 - Ogone | Ubercart payment - Access Bypass

By Drupal Security Team on 16 Jun 2010 at 18:05 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-062
Project: Ogone | Ubercart payment (third-party module)
Version: 5.x, 6.x
Date: 2010-June-16
Security risk: Critical
Exploitable from: Remote
Vulnerability: Access Bypass

SA-CONTRIB-2010-061 - AddonChat - Multiple Vulnerabilities

By Drupal Security Team on 26 May 2010 at 20:14 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-061
Project: AddonChat (third-party module)
Version: 6.x-1.x
Date: 2010-May-26
Security risk: Highly Critical
Exploitable from: Remote
Vulnerability: Multiple (Privilege Escalation, Cross-site scripting)

SA-CONTRIB-2010-060 - Scheduler - Cross Site Scripting

By Drupal Security Team on 26 May 2010 at 19:27 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-060
Project: Scheduler (third-party module)
Version: 5.x, 6.x
Date: 2010-May-26
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2010-059: Panels - Arbitrary PHP code execution

By Drupal Security Team on 20 May 2010 at 02:37 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-059
Project: Panels (third-party module)
Versions: 6.x
Date: 2010 May 19
Security risk: Critical
Exploitable from: Remote
Vulnerability: Arbitrary PHP code execution

SA-CONTRIB-2010-058: Chaos tool suite - Multiple vulnerabilities

By Drupal Security Team on 20 May 2010 at 02:35 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-058
Project: Chaos tool suite (third-party module)
Versions: 6.x
Date: 2010 May 19
Security risk: Critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

Pages

Subscribe with RSS