Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2009-058 - Comment RSS - Access bypass

By Drupal Security Team on 16 Sep 2009 at 16:40 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-058
Project: Comment RSS (third-party module)
Version: 5.x, 6.x
Date: 2009-September-16
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2009-057 - Date - Cross Site Scripting

By Drupal Security Team on 16 Sep 2009 at 14:55 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-057
Project: Date (third-party module)
Version: 5.x, 6.x
Date: 2009-September-16
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-056 - Node2Node, Node Browser, Subdomain Manager, Quota by role, Rest API with vulnerabilities, now abandoned

By Drupal Security Team on 9 Sep 2009 at 16:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-056
Project: Node2Node, Node Browser, Subdomain Manager, Quota by role, Rest API (third-party modules)
Version: 5.x, 6.x
Date: 2009 Sept 9
Security risk: Critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

SA-CONTRIB-2009-055 - BUEditor - Cross Site Scripting

By Drupal Security Team on 9 Sep 2009 at 16:50 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-055
Project: BUEditor (third-party module)
Version: 5.x, 6.x
Date: 2009 September 9
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-054 - Go - url redirects - Multiple vulnerabilities

By Drupal Security Team on 26 Aug 2009 at 19:20 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-054
Project: Go - url redirects (third-party module)
Versions: 5.x, 6.x
Date: 2009 August 26
Security risk: Highly Critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

SA-CONTRIB-2009-053 - Ajax Table - Multiple vulnerabilities

By Drupal Security Team on 26 Aug 2009 at 18:30 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-053
Project: Ajax Table (third-party module)
Version: 5.x
Date: 2009-Aug-26
Security risk: Critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

Pages

Subscribe with RSS