SA-2008-043 - Outline designer - Privilege escalation

By heine on
  • Advisory ID: DRUPAL-SA-2008-043
  • Project: Outline designer (third-party module)
  • Version: 5.x
  • Date: 2008-July-2
  • Security risk: Highly critical
  • Exploitable from: Remote
  • Vulnerability: Privilege escalation

SA-2008-042 - Tinytax - Cross site scripting

By heine on
  • Advisory ID: DRUPAL-SA-2008-042
  • Project: Tinytax taxonomy block (third-party module)
  • Version: 5.x
  • Date: 2008-July-2
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting

SA-2008-041 - Taxonomy autotagger - Multiple vulnerabilities

By heine on
  • Advisory ID: DRUPAL-SA-2008-041
  • Project: Taxonomy autotagger (third-party module)
  • Version: 5.x
  • Date: 2008-July-2
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting and SQL injection

SA-2008-040 - Organic Groups - Cross site scripting and information disclosure

By moshe weitzman on
  • Advisory ID: DRUPAL-SA-2008-040
  • Project: Organic Groups (third-party module)
  • Versions: 5.x and 6.x
  • Date: 2008-July-02
  • Security risk: Less Critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting and information disclosure

SA-2008-039 - Suggested terms - Cross site scripting

By heine on
  • Advisory ID: SA-2008-039
  • Project: Suggested terms (third-party module)
  • Versions: 5.x
  • Date: 2008-June-25
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting

SA-2008-038 - Services - Arbitrary code execution

By heine on
  • Advisory ID: DRUPAL-SA-2008-038
  • Project: Services (third-party module)
  • Versions: 5.x and 6.x
  • Date: 2008-June-18
  • Security risk: Highly critical
  • Exploitable from: Remote
  • Vulnerability: Arbitrary code execution

Pages

Subscribe with RSS Subscribe to RSS - Deprecated - Security advisories for contributed projects