Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2010-003 - Forward - Cross site scripting

By Drupal Security Team on 6 Jan 2010 at 23:35 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-003
Project: Forward (third-party module)
Version: 6.x
Date: 2010-January-6
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Multiple XSS vulnerabilities

SA-CONTRIB-2010-002 - Currency Exchange - Cross site scripting

By Drupal Security Team on 6 Jan 2010 at 19:45 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-002
Project: Currency Exchange (third-party module)
Version: 6.x
Date: 2010-January-6
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2010-001 - Wunderbar - Cross Site Scripting

By Drupal Security Team on 6 Jan 2010 at 19:22 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2010-001
Project: Wunderbar! (third-party module)
Version: 6.x
Date: 2010-January-6
Security risk: Not Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-115 - Autocomplete Widgets for CCK Text and Number - Information Disclosure

By Drupal Security Team on 30 Dec 2009 at 17:59 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-115
Project: Autocomplete Widgets for CCK Text and Number (third-party module)
Version: 6.x
Date: 2009-December-30
Security risk: Less Critical
Exploitable from: Remote
Vulnerability: Information Disclosure

SA-CONTRIB-2009-114 - Automated Logout - Cross Site Scripting

By Drupal Security Team on 24 Dec 2009 at 03:46 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-114
Project: Automated Logout (third-party module)
Version: 6.x
Date: 2009-December-23
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-113 - FAQ - Cross Site Scripting

By Drupal Security Team on 23 Dec 2009 at 18:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-113
Project: FAQ (third-party module)
Version: 5.x, 6.x
Date: 2009-December-23
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

Pages

Subscribe with RSS