Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

Workbench Scheduler - Moderately Critical - Access Bypass - SA-CONTRIB-2016-049

By Drupal Security Team on 24 Aug 2016 at 14:47 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-049
Project: Workbench Scheduler (third-party module)
Version: 7.x
Date: 2016-August-24
Security risk: 13/25 ( Moderately Critical) AC:Complex/A:User/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Access bypass

Panelizer - Moderately Critical - Access Bypass - SA-CONTRIB-2016-048

By Drupal Security Team on 17 Aug 2016 at 17:13 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2014-048
Project: Panelizer (third-party module)
Version: 7.x
Date: 2016-August-17
Security risk: 12/25 ( Moderately Critical) AC:None/A:User/CI:None/II:Some/E:Theoretical/TD:Default
Vulnerability: Access bypass

Panels - Critical - Multiple Vulnerabilities - SA-CONTRIB-2016-047

By Drupal Security Team on 17 Aug 2016 at 16:20 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-047
Project: Panels (third-party module)
Version: 7.x
Date: 2016-August-17
Security risk: 15/25 ( Critical) AC:None/A:None/CI:All/II:None/E:Theoretical/TD:All
Vulnerability: Access bypass, Information Disclosure

Hosting - Less Critical - Access bypass - SA-CONTRIB-2016-046

By Drupal Security Team on 17 Aug 2016 at 13:35 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-046
Project: Hosting (third-party module)
Version: 7.x
Date: 2016-August-17
Security risk: 9/25 ( Less Critical) AC:Basic/A:User/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass

Require Login - Moderately Critical - Multiple vulnerabilities - SA-CONTRIB-2016-045

By Drupal Security Team on 10 Aug 2016 at 15:08 UTC

Advisory ID: SA-CONTRIB-2016-045
Project: Require Login (third-party module)
Version: 7.x, 8.x
Date: 2016-August-10
Security risk: 13/25 ( Moderately Critical) AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting, Access bypass

OAuth2 Client- Moderately Critical - Cross Site Request Forgery - SA-CONTRIB-2016-044

By Drupal Security Team on 10 Aug 2016 at 13:30 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-044
Project: OAuth2 Client (third-party module)
Version: 7.x
Date: 2016-August-10
Security risk: 10/25 ( Moderately Critical) AC:Complex/A:None/CI:None/II:None/E:Proof/TD:All
Vulnerability: Cross Site Request Forgery

Pages

Subscribe with RSS