Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2013-089 - Node Access Keys - Access Bypass

By Drupal Security Team on 6 Nov 2013 at 19:55 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-089
Project: Node Access Keys (third-party module)
Version: 7.x
Date: 2013-November-06
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2013-088 - Secure Pages - Missing Encryption of Sensitive Data

By Drupal Security Team on 6 Nov 2013 at 19:46 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-088
Project: Secure Pages (third-party module)
Version: 6.x
Date: 2013-November-06
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Missing Encryption of Sensitive Data

SA-CONTRIB-2013-087 - Payment for Webform - Access Bypass

By Drupal Security Team on 6 Nov 2013 at 19:33 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-087
Project: Payment for Webform (third-party module)
Version: 7.x
Date: 2013-November-06
Security risk: Not critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2013-086 - Monster Menus - Access bypass

By Drupal Security Team on 30 Oct 2013 at 18:57 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-086
Project: Monster Menus (third-party module)
Version: 7.x
Date: 2013-October-30
Security risk: Critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2013-085 - Feed Element Mapper - Cross Site Scripting

By Drupal Security Team on 30 Oct 2013 at 18:50 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-085
Project: Feed Element Mapper (third-party module)
Version: 6.x
Date: 2013-October-30
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-084 - FileField Sources - Access Bypass

By Drupal Security Team on 30 Oct 2013 at 18:11 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-084
Project: FileField Sources (third-party module)
Version: 6.x, 7.x
Date: 2013-October-30
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

Pages

Subscribe with RSS