Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2009-040 - Advanced Forum - Multiple vulnerabilities

By Drupal Security Team on 1 Jul 2009 at 20:58 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-040
Project: Advanced Forum (third-party module)
Version: 5.x, 6.x
Date: 2009-July-1
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

SA-CONTRIB-2009-039 - Links Package - Cross Site Scripting

By Drupal Security Team on 25 Jun 2009 at 15:46 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-039
Project: Links Package (third-party module)
Version: 5.x, 6.x
Date: 2009-June-25
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-038 - Nodequeue - Multiple vulnerabilities

By Drupal Security Team on 10 Jun 2009 at 22:15 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-038
Project: Nodequeue (third-party module)
Version: 5.x, 6.x
Date: 2009-June-10
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

SA-CONTRIB-2009-037 - Views - Multiple vulnerabilities

By Drupal Security Team on 10 Jun 2009 at 21:59 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-037
Project: Views
Versions: 6.x-2.x
Date: 2009-June-10
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting (XSS), Access Bypass

SA-CONTRIB-2009-036 - Services - Impersonation

By Drupal Security Team on 10 Jun 2009 at 21:07 UTC

Advisory ID: SA-CONTRIB-2009-036
Project: Services (third-party module)
Version: 6.x
Date: 2009 June 10
Security risk: Critical
Exploitable from: Remote
Vulnerability: Impersonation

SA-CONTRIB-2009-035 - Booktree - Cross site scripting

By Drupal Security Team on 10 Jun 2009 at 18:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-035
Project: Booktree (third-party module)
Version: 5.x, 6.x
Date: 2009-June-10
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

Pages

Subscribe with RSS