Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2013-083 - Quiz - Access Bypass

By Drupal Security Team on 30 Oct 2013 at 14:30 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-083
Project: Quiz (third-party module)
Version: 6.x
Date: 2013-October-30
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass, Information Disclosure, Multiple vulnerabilities

SA-CONTRIB-2013-082 - Bean - Cross Site Scripting (XSS)

By Drupal Security Team on 23 Oct 2013 at 18:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-082
Project: Bean (third-party module)
Version: 7.x
Date: 2013-10-23
Security risk: Highly critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-081 - Spaces - Access bypass

By Drupal Security Team on 23 Oct 2013 at 16:00 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-081
Project: Spaces (third-party module)
Version: 6.x
Date: 2013-10-23
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2013-080 - Simplenews - Cross Site Scripting (XSS)

By Drupal Security Team on 16 Oct 2013 at 18:39 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-080
Project: Simplenews (third-party module)
Version: 6.x, 7.x
Date: 2013-Month-DD
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-079 - Context - Multiple Vulnerabilities

By Drupal Security Team on 16 Oct 2013 at 15:39 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-079
Project: Context (third-party module)
Version: 6.x, 7.x
Date: 2013-2013-16
Security risk: Highly critical
Exploitable from: Remote
Vulnerability: Access bypass, Arbitrary PHP code execution

SA-CONTRIB-2013-078 - Quick Tabs - Access Bypass

By Drupal Security Team on 2 Oct 2013 at 17:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-078
Project: Quick Tabs (third-party module)
Version: 6.x, 7.x
Date: 2013-October-02
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

Pages

Subscribe with RSS