drupal.org - poprawki

Subskrybuje zawartość
This list is for security announcements sent out be the Drupal security team.
Zaktualizowano: 8 min. 23 sek. temu

SA-2008-046 - Drupal core - Session fixation

8 godzin 56 min. temu
  • Advisory ID: DRUPAL-SA-2008-046
  • Project: Drupal core
  • Version: 5.x
  • Date: 2008-July-23
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Session fixation

read more

SA-2008-045 - OpenID - Multiple vulnerabilities

śr., 2008-07-09 23:08
  • Advisory ID: DRUPAL-SA-2008-045
  • Project: OpenID (third-party module)
  • Version: 5.x
  • Date: 2008-July-9
  • Security risk: Less critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting, Cross site request forgeries

read more

SA-2008-044 - Drupal core - Multiple vulnerabilities

śr., 2008-07-09 22:24
  • Advisory ID: DRUPAL-SA-2008-044
  • Project: Drupal core
  • Version: 5x, 6.x
  • Date: 2008-July-9
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Multiple vulnerabilities

read more

SA-2008-043 - Outline designer - Privilege escalation

śr., 2008-07-02 21:56
  • Advisory ID: DRUPAL-SA-2008-043
  • Project: Outline designer (third-party module)
  • Version: 5.x
  • Date: 2008-July-2
  • Security risk: Highly critical
  • Exploitable from: Remote
  • Vulnerability: Privilege escalation

read more

SA-2008-042 - Tinytax - Cross site scripting

śr., 2008-07-02 21:51
  • Advisory ID: DRUPAL-SA-2008-042
  • Project: Tinytax taxonomy block (third-party module)
  • Version: 5.x
  • Date: 2008-July-2
  • Security risk: Moderately critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting

read more

SA-2008-041 - Taxonomy autotagger - Multiple vulnerabilities

śr., 2008-07-02 21:48
  • Advisory ID: DRUPAL-SA-2008-041
  • Project: Taxonomy autotagger (third-party module)
  • Version: 5.x
  • Date: 2008-July-2
  • Security risk: Critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting and SQL injection

read more

SA-2008-040 - Organic Groups - Cross site scripting and information disclosure

śr., 2008-07-02 21:42
  • Advisory ID: DRUPAL-SA-2008-040
  • Project: Organic Groups (third-party module)
  • Versions: 5.x and 6.x
  • Date: 2008-July-02
  • Security risk: Less Critical
  • Exploitable from: Remote
  • Vulnerability: Cross site scripting and information disclosure

read more