Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

MAYO theme - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-164

By Drupal Security Team on 11 Nov 2015 at 16:27 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2015-164
Project: MAYO (third-party theme)
Version: 7.x
Date: 2015-November-11
Security risk: 13/25 ( Moderately Critical) AC:Basic/A:Admin/CI:Some/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Scripting

Monster Menus - Access Bypass - Moderately Critical - SA-CONTRIB-2015-163

By Drupal Security Team on 4 Nov 2015 at 17:21 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2015-163
Project: Monster Menus (third-party module)
Version: 7.x
Date: 2015-November-04
Security risk: 12/25 ( Moderately Critical) AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Access bypass

Login Disable - Access Bypass - Moderately Critical - SA-CONTRIB-2015-162

By Drupal Security Team on 4 Nov 2015 at 16:13 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2015-162
Project: Login Disable (third-party module)
Version: 6.x, 7.x
Date: 2015-November-04
Security risk: 12/25 ( Moderately Critical) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass

Field as Block - Less Critical - Information Disclosure - SA-CONTRIB-2015-161

By Drupal Security Team on 28 Oct 2015 at 15:58 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2015-161
Project: Field as Block (third-party module)
Version: 7.x
Date: 2015-October-28
Security risk: 8/25 ( Less Critical) AC:Basic/A:Admin/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass

Webform CiviCRM Integration - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-160

By Drupal Security Team on 21 Oct 2015 at 19:14 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2015-160
Project: Webform CiviCRM Integration (third-party module)
Version: 7.x
Date: 2015-October-21
Security risk: 12/25 ( Moderately Critical) AC:Basic/A:User/CI:Some/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Cross Site Scripting

LABjs - Less Critical - Open Redirect - SA-CONTRIB-2015-159

By Drupal Security Team on 21 Oct 2015 at 16:36 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2015-159
Project: LABjs (third-party module)
Version: 7.x
Date: 2015-October-21
Security risk: 9/25 ( Less Critical) AC:Basic/A:None/CI:None/II:None/E:Theoretical/TD:Default
Vulnerability: Open Redirect

Pages

Subscribe with RSS