Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Why Drupal?
About Drupal
Platform overview
Drupal 10
Content Authoring
Content as a Service
Decoupled
Accessibility
Marketing Automation
Multilingual
Security
Personalization
Case studies
Video series
News
Use cases
For Developers
For Marketers
E-commerce
Education
FinTech
Government
Healthcare
High Tech
Nonprofit
Retail
Travel
Resources
Installing Drupal
Documentation
User guide
Local Development Guide
Security
News
Blog
Drupal 7 Migrations
Services
Find an Agency Partner
Find a Migration Partner
Integrations & Hosting
Training
Become a Certified Partner
Partner Press
Community
How to Contribute
About the Community
Support
Community Governance
Jobs/Careers
Events
DrupalCon Portland 2024
DrupalCon Barcelona 2024
Community Events
Download
Download
Modules
Themes
Distributions
Issue queues
Browse Repository
Give
Drupal Association
Become a Supporter
Become a Certified Partner
Become a Member
Make a Donation
Discover Drupal
Drupal Swag Shop
Demo
Demo online
Download
Return to content
Search form
Search
Log in
Create account
Early Bird Registration for DrupalCon Portland 2024 is open! Register by 23:59 PST on 31 March 2024, to get $100 off your ticket.
Register now
Deprecated - Security advisories for contributed projects
This forum is deprecated —
view current Drupal contributed projects security advisories
SA-CONTRIB-2009-070 - Shibboleth authentication - Impersonation, privilege escalation
By
coltrane
on
14 Oct 2009 at 17:21 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2009-070
Project: Shibboleth authentication (third-party module)
Version: 6.x, 5.x
Date: 2009-October-14
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Impersonation, privilege escalation
SA-CONTRIB-2009-068 - Boost - Filesystem Directory Creation
By
Drupal Security Team
on
30 Sep 2009 at 20:50 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2009-068
Project: Boost (third-party module)
Version: 6.x-1.*
Date: 2009-09-30
Security risk: Low
Exploitable from: Remote
Vulnerability: Filesystem Directory Creation
SA-CONTRIB-2009-069 - Shared Sign On - Cross Site Scripting
By
Drupal Security Team
on
30 Sep 2009 at 20:49 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2009-069
Project: Shared Sign On (third-party module)
Version: 5.x, 6.x
Date: 2009 September 30
Security risk: Critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities
SA-CONTRIB-2009-067 Dex module - Cross Site Scripting, no longer maintained
By
Drupal Security Team
on
30 Sep 2009 at 18:59 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2009-067
Project: Dex: Contact Information Manager (third-party module)
Version: 5.x, 6.x
Date: 2009-Sept-30
Security risk: Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
SA-CONTRIB-2009-066 - Organic Groups - Cross Site Scripting
By
Drupal Security Team
on
30 Sep 2009 at 18:26 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2009-066
Project: Organic Groups (third-party module)
Version: 5.x, 6.x
Date: 2009-September-30
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
SA-CONTRIB-2009-065 - Browscap - Cross Site Scripting
By
greggles
on
30 Sep 2009 at 17:31 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2009-065
Project: Browscap (third-party module)
Version: 5.x, 6.x
Date: 2009-September-30
Security risk: Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
Pages
« first
‹ previous
…
152
153
154
155
156
157
158
159
160
…
next ›
last »
Subscribe with RSS