Deprecated - Security advisories for contributed projects

• Advisory ID: DRUPAL-SA-CONTRIB-2009-024
• Project: Node Access User Reference (third-party module)
• Version: 5.x, 6.x
• Date: 2009-April-29
• Security risk: Critical
• Exploitable from: Remote
• Vulnerability: Access bypass

Description

• Advisory ID: DRUPAL-SA-CONTRIB-2009-021
• Project: CCK comment reference (third-party module)
• Version: 6.x
• Date: 2009 April 15
• Security risk: Moderately critical
• Exploitable from: Remote
• Vulnerability: Cross-site scripting (XSS)

• Advisory ID: DRUPAL-SA-CONTRIB-2009-020
• Project: Printer, e-mail and PDF versions (third-party module)
• Version: 5.x, 6.x
• Date: 2009-April-15
• Security risk: Moderately critical
• Exploitable from: Remote
• Vulnerability: Cross-site scripting (XSS)

• Advisory ID: DRUPAL-SA-CONTRIB-2009-019
• Project: Localization client (third-party module)
• Versions: 5.x, 6.x
• Date: 2009-April-15
• Security risk: Moderately critical
• Exploitable from: Remote
• Vulnerability: Cross-site scripting (XSS)

• Advisory ID: DRUPAL-SA-CONTRIB-2009-018
• Project: Feed element mapper (third-party module)
• Version: 5.x
• Date: 2009-March-26
• Security risk: Less critical
• Exploitable from: Remote
• Vulnerability: Cross-site scripting (XSS)

• Advisory ID: DRUPAL-SA-CONTRIB-2009-017
• Project: Vote Up/Down (third-party module)
• Version: 5.x, 6.x
• Date: 2009-March-25
• Security risk: Not critical
• Exploitable from: Remote
• Vulnerability: Cross-site request forgery