Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

Unpublished 404 - Critical - Access bypass - SA-CONTRIB-2017-021

By Drupal Security Team on 22 Feb 2017 at 17:19 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2017-021
Project: Unpublished 404 (third-party module)
Version: 7.x
Date: 2017-Jan-25
Security risk: 19/25 ( Critical) AC:None/A:None/CI:Some/II:Some/E:Proof/TD:All

Views - Moderately Critical - Access Bypass - SA-CONTRIB-2017-022

By Drupal Security Team on 22 Feb 2017 at 17:18 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2017-022
Project: Views (third-party module)
Version: 7.x
Date: 2017-February-22
Security risk: 10/25 ( Moderately Critical) AC:Complex/A:None/CI:Some/II:None/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass

Timezone Detect - Moderately Critical - Cross Site Request Forgery - SA-CONTRIB-2017-020

By Drupal Security Team on 22 Feb 2017 at 16:45 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2017-020
Project: Timezone Detect (third-party module)
Version: 7.x
Date: 2017-February-22
Security risk: 13/25 ( Moderately Critical) AC:Basic/A:None/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery

Metatag -Moderately Critical - Information disclosure - SA-CONTRIB-2017-019

By Drupal Security Team on 15 Feb 2017 at 17:21 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2017-019
Project: Metatag (third-party module)
Version: 7.x
Date: 2017-February-15
Security risk: 11/25 ( Moderately Critical) AC:Complex/A:None/CI:Some/II:None/E:Proof/TD:Uncommon
Vulnerability: Information Disclosure

RESTful - Moderately Critical - Access Bypass - SA-CONTRIB-2017-018

By Drupal Security Team on 15 Feb 2017 at 16:55 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2017-018
Project: RESTful (third-party module)
Version: 7.x
Date: 2017-February-15
Security risk: 11/25 ( Moderately Critical) AC:Complex/A:User/CI:Some/II:Some/E:Theoretical/TD:Uncommon
Vulnerability: Access bypass

Flag clear - Moderately Critical - Cross Site Request Forgery (CSRF) - SA-CONTRIB-2017-017

By Drupal Security Team on 15 Feb 2017 at 16:42 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2017-017
Project: Flag clear (third-party module)
Version: 7.x
Date: 2017-February-15
Security risk: 10/25 ( Moderately Critical) AC:Basic/A:Admin/CI:None/II:Some/E:Theoretical/TD:All
Vulnerability: Cross Site Request Forgery

Pages

Subscribe with RSS