DRUPAL-SA-2005-007 XSS vulnerability in submitted content

  • Advisory ID: DRUPAL-SA-2005-007
  • Project: Drupal core
  • Date: 2005-11-30
  • Security risk: less critical
  • Impact: normal
  • Where: from remote
  • Vulnerability: XSS

Drupal 4.6.4 / 4.5.6 released

Drupal 4.6.4 is available for download. Drupal 4.6.4 is a maintenance release that fixes problems reported using the bug tracking system, as well as 3 security vulnerabilities (two "less critical", one "not critical") that affect all previous versions of Drupal. Since the vulnerabilities are also present in the Drupal 4.5 series, Drupal 4.5.6 is released as well.

Upgrading your existing Drupal sites is strongly recommended.

There are no new features in these installments. For more information about the Drupal 4.6.x release series, please consult the Drupal 4.6.0 release announcement.

my first drupal installation: dead ended with weird error

Hi-

I've checked all documentation, etc. and have hit a dead-end. I am using Drupal 4.5.5. I guess my first question: should I upgrade to 4.6.3?

I created a new database (djfrien_drupal) in C-panel, new dba User (djfrien_admin), password, was able to upload drupal tables to the djfrien_drupal database & see them myPhp, so that's all good. I changed the conf.php file in the includes folder as directed (I am 99% certain).

Then I tried to go to the site with my browser and got this error msg:

login panel DISAPPEARED!

Hello GNU-people
I've created a block and my login panel dissapeared,
htttp://aderiva.atreu.homelinux.net:8080
how can I restore it?

2$ per month hosting for drupal

Hi,

I have reseller hosting account and would like to lend custom hosting package to anyone interested for 2$/month. I can have drupal, mambo/joomla, wordpress etc pre-installed if needed.

Thx

Front Page Module --Help

Hey all,

I'm having some trouble getting my node links to redirect from the main intro page to a new template page I want to use as opposed to the front page template for things like articles and posts, etc.

After finding this module (http://drupal.org/project/front) I thought it wouldn't be too hard to adapt it to my needs, but it's proving harder than I thought.

If you guys need any more specifics please let me know.

Thanks

Pages

Subscribe with RSS Subscribe to RSS - Drupal 4.5.x or older