Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2009-034 - Taxonomy manager - Cross site scripting

By Drupal Security Team on 10 Jun 2009 at 17:54 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-034
Project: Taxonomy manager (third-party module)
Version: 5.x, 6.x
Date: 2009-June-10
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-033 - Quiz - Cross site scripting

By Drupal Security Team on 3 Jun 2009 at 20:34 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-033
Project: Quiz (third-party module)
Version: 5.x, 6.x
Date: 2009-June-03
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-032 - Webform - Cross-site scripting

By Drupal Security Team on 3 Jun 2009 at 20:03 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-032
Project: Webform (third-party module)
Versions: 5.x, 6.x
Date: 2009-June-03
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross-site scripting

SA-CONTRIB-2009-031 - Ajax Session - Multiple vulnerabilities

By Drupal Security Team on 27 May 2009 at 17:20 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-031
Project: Ajax Session (third-party module)
Version: 5.x
Date: 2009 May 27
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Multiple vulnerabilities

SA-CONTRIB-2009-030 - Email Verification - Information disclosure / Cross Site Scripting

By Drupal Security Team on 20 May 2009 at 20:09 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-030
Project: Email Verification (third-party module)
Version: 5.x, 6.x
Date: 2009-May-20
Security risk: High
Exploitable from: Remote
Vulnerability: Information disclosure, Cross Site Scripting

SA-CONTRIB-2009-029 - Views Bulk Operations - Access Bypass

By Drupal Security Team on 20 May 2009 at 20:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-029
Project: Views Bulk Operations (third-party module)
Version: 5.x, 6.x
Date: 2009-May-20
Security risk: Medium
Exploitable from: Remote
Vulnerability: Access bypass

Pages

Subscribe with RSS