SA-CONTRIB-2014-027 - NewsFlash Theme - XSS

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2014-027
  • Project: NewsFlash (third-party theme)
  • Version: 6.x, 7.x
  • Date: 2014-March-05
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 6.x, Drupal 7.x

SA-CONTRIB-2014-026 - Mime Mail - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2014-026
  • Project: Mime Mail (third-party module)
  • Version: 6.x, 7.x
  • Date: 2014-February-26
  • Security risk: Not critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 6.x, Drupal 7.x

SA-CONTRIB-2014-025 - Open Omega - Access Bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2014-025
  • Project: Open Omega (third-party theme)
  • Version: 7.x
  • Date: 2014-February-26
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

SA-CONTRIB-2014-024 - Content Lock - CSRF

By Drupal Security Team on
Categories: Drupal 6.x, Drupal 7.x

SA-CONTRIB-2014-023 - Project Issue File Review - XSS

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2014-023
  • Project: Project Issue File Review (third-party module)
  • Version: 6.x
  • Date: 2014-February-26
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross Site Scripting
Categories: Drupal 6.x

SA-CONTRIB-2014-022 - Slickgrid - Access bypass

By Drupal Security Team on
  • Advisory ID: DRUPAL-SA-CONTRIB-2014-022
  • Project: Slickgrid (third-party module)
  • Version: 7.x
  • Date: 2014-February -22
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Access bypass
Categories: Drupal 7.x

Pages

Subscribe with RSS Subscribe to RSS - Deprecated - Security advisories for contributed projects