Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2009-106 - Agreement - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 20:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-106
Project: Agreement (third-party module)
Version: 6.x
Date: 2009-November-18
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-105 - Subgroups for Organic Groups - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 20:35 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-105
Project: Subgroups for Organic Groups (third-party module)
Version: 5.x
Date: 2009-November-18
Security risk: Less Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-104 - Feed Element Mapper - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 19:51 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-104
Project: Feed Element Mapper (third-party module)
Version: 5.x, 6.x
Date: 2009-November-18
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-103 - Strongarm - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 18:54 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-103
Project: Strongarm (third-party module)
Version: 6.x
Date: 2009 November 18
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-102 - PHPList Integration Module - Cross Site Request Forgery

By pwolanin on 18 Nov 2009 at 17:59 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-102
Project: PHPList Inegration Module (third-party module)
Version: 5.x, 6.x
Date: 2009-November-18
Security risk: Less Critical
Exploitable from: Remote
Vulnerability: Cross site request forgery

SA-CONTRIB-2009-101 - Web Services - Access Bypass

By Drupal Security Team on 11 Nov 2009 at 22:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-101
Project: Web Services (third-party theme)
Version: 6.x
Date: 2009-November-11
Security risk: Critical
Exploitable from: Remote
Vulnerability: Access Bypass

Pages

Subscribe with RSS