Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2013-023 - Varnish module - Cross Site Scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 20:43 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-023
Project: Varnish HTTP Accelerator Integration (third-party module)
Version: 6.x, 7.x
Date: 2013-February-20
Security risk: Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-022 - Menu Reference - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 15:00 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-022
Project: Menu Reference (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-021 - Display Suite - Cross Site Scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:51 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-021
Project: Display Suite (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-020 - Ubercart - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-020
Project: Ubercart (third-party module)
Version: 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-019 - Ubercart Views - Cross site scripting (XSS)

By Drupal Security Team on 20 Feb 2013 at 14:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-019
Project: Ubercart Views (third-party module)
Version: 6.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-018 - Taxonomy Manager - Cross Site Request Forgery (CSRF)

By Drupal Security Team on 20 Feb 2013 at 14:37 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-018
Project: Taxonomy Manager (third-party module)
Version: 6.x, 7.x
Date: 2013-February-20
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Request Forgery

Pages

Subscribe with RSS