Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2012-149 - Hostip - Cross Site Scripting (XSS)

By Drupal Security Team on 3 Oct 2012 at 15:10 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2012-149
Project: Hostip (third-party module)
Version: 6.x, 7.x
Date: 2012-October-03
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2012-148 - OG - Access Bypass

By Drupal Security Team on 26 Sep 2012 at 20:46 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2012-148
Project: Organic groups (third-party module)
Version: 7.x
Date: 2012-September-26
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2012-147 - FileField Sources - Cross Site Scripting (XSS)

By Drupal Security Team on 19 Sep 2012 at 17:12 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2012-147
Project: FileField Sources (third-party module)
Version: 6.x, 7.x
Date: 2012-September-19
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2012-146 - Simplenews Scheduler - Arbitrary code execution

By Drupal Security Team on 19 Sep 2012 at 16:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2012-146
Project: Simplenews Scheduler (third-party module)
Version: 6.x
Date: 2012-September-19
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Arbitrary PHP code execution

SA-CONTRIB-2012-145 - Imagemenu - Cross Site Scripting (XSS)

By Drupal Security Team on 19 Sep 2012 at 16:37 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2012-145
Project: Imagemenu (third-party module)
Version: 6.x
Date: 2012-September-19
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2012-144 Fonecta verify - Cross Site Scripting (XSS)

By Drupal Security Team on 19 Sep 2012 at 16:37 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2012-144
Project: Fonecta verify (third-party module)
Version: 7.x
Date: 2012-September-19
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

Pages

Subscribe with RSS