Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

Opening hours - Moderately Critical - XSS - SA-CONTRIB-2016-031

By Drupal Security Team on 1 Jun 2016 at 13:14 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-031
Project: Opening hours (third-party module)
Version: 7.x
Date: 2016-June-01
Security risk: 12/25 ( Moderately Critical) AC:Complex/A:Admin/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting

XML Sitemap - Moderately Critical - XSS - SA-CONTRIB-2016-030

By Drupal Security Team on 25 May 2016 at 15:50 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-030
Project: XML Sitemap (third-party module)
Version: 7.x
Date: 2016-May-25
Security risk: 13/25 ( Moderately Critical) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Default
Vulnerability: Cross Site Scripting

Views Megarow - Critical - Access Bypass - SA-CONTRIB-2016-029

By Drupal Security Team on 18 May 2016 at 17:54 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-027
Project: Views Megarow (third-party module)
Version: 7.x
Date: 2016-May-18
Security risk: 16/25 ( Critical) AC:Basic/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Access bypass, Information Disclosure

Registration Codes - Less Critical - Input Validation Vulnerability - SA-CONTRIB-028

By Drupal Security Team on 18 May 2016 at 17:54 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-028
Project: Registration codes (third-party module)
Version: 6.x, 7.x
Date: 2016-May-18
Security risk: 9/25 ( Less Critical) AC:Basic/A:None/CI:None/II:None/E:Theoretical/TD:Default
Vulnerability: Access bypass

Dropbox client - Multiple Vulnerabilities - SA-CONTRIB-2016-027

By Drupal Security Team on 18 May 2016 at 17:29 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-027
Project: Dropbox Client (third-party module)
Version: 7.x
Date: 2016-May-18
Security risk: 15/25 ( Critical) AC:Complex/A:None/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting, Access bypass, Cross Site Request Forgery, Information Disclosure, Multiple vulnerabilities

Open Atrium Notifications - Less Critical - Information Disclosure - SA-CONTRIB-2016-026

By Drupal Security Team on 4 May 2016 at 16:43 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2016-026
Project: Open Atrium Notifications (third-party module)
Version: 7.x
Date: 2016-May-04
Security risk: 9/25 ( Less Critical) AC:Complex/A:User/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Information Disclosure

Pages

Subscribe with RSS