wunderbar 6.x-1.x-dev
| Download | Size | md5 hash |
|---|---|---|
| wunderbar-6.x-1.x-dev.tar.gz | 53.58 KB | 9170e6c209631429752023ac5af3a48c |
| wunderbar-6.x-1.x-dev.zip | 58.27 KB | bbc939ac103f630af8beff356d16290b |
Release notes
Fixed IE6-8 compatibilities
- there are changes in the structure of divs and its tags
wunderbar 7.x-0.6
| Download | Size | md5 hash |
|---|---|---|
| wunderbar-7.x-0.6.tar.gz | 48.9 KB | 6e1a48d98ecb774efa8196acf30d65c5 |
| wunderbar-7.x-0.6.zip | 53.72 KB | 1dfa7bb1a912eb4173b936d0c613040f |
Release notes
Port of the Drupal 6 version. I synced the version numbers so that once one goes gold the other will.
wunderbar 6.x-0.6
| Download | Size | md5 hash |
|---|---|---|
| wunderbar-6.x-0.6.tar.gz | 48.76 KB | b66ff601affd1d5184818bb2abd87948 |
| wunderbar-6.x-0.6.zip | 53.57 KB | ac8350c9438536612d6dc28563b886d6 |
Release notes
Advisory ID: DRUPAL-SA-CONTRIB-2010-001
Project: Wunderbar! (third-party module)
Version: 6.x
Date: 01/06/2010
Security risk: Not Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
Description
The Wunderbar! module provides a floating bar with configurable buttons and the ability to link off to social networking sites. The module does not properly escape user names, potentially allowing a cross site scripting (XSS) attack which may lead to the user gaining full administrative access. The risk is mitigated by Drupal's default configuration, which disallows some characters (<, >, &, and quotes) in user names. A site would only be vulnerable to this attack if they use an alternate means to create usernames on their site.
Versions affected
Wunderbar! versions 6.x prior to 6.x-0.6
Drupal core is not affected. If you do not use the Wunderbar! module, there is nothing you need to do.
Solution
Install the latest version: 6.x-0.6
If you use Wunderbar! for Drupal 6.x upgrade to Wunderbar! 6.x-0.6
See also the Wunderbar! project page.
Reported by
Isaac Sukin.
Fixed by
Bryan Ollendyke, the Wunderbar! project maintainer.
wunderbar 6.x-0.5
| Download | Size | md5 hash |
|---|---|---|
| wunderbar-6.x-0.5.tar.gz | 48.72 KB | 30aee0ff9233e2cd4b27fe4ce15614bf |
| wunderbar-6.x-0.5.zip | 53.54 KB | 858bb655f9aa60e8e24da625cfb4ac88 |
Release notes
Print showing up regaurdless of being enabled / on a node page fixed.
Search bar now works!
Some resizing / collapse issues fixed
wunderbar 6.x-0.3
| Download | Size | md5 hash |
|---|---|---|
| wunderbar-6.x-0.3.tar.gz | 48.26 KB | 525198b34fad49c16f836edb70c8b10f |
| wunderbar-6.x-0.3.zip | 53.13 KB | 044fc3da9ab32005a316195ff97ef942 |
Release notes
Better conforms with Drupal.org standards. Is better documented and fixes *potential security issues. Also takes into account CVS policies about jquery files better and gives linkage off to download them. Sorry for complicating things gang :\
wunderbar 6.x-0.1
| Download | Size | md5 hash |
|---|---|---|
| wunderbar-6.x-0.1.tar.gz | 48.98 KB | 2f1b70d9fe73ee7f75c6fd41c45f1caa |
| wunderbar-6.x-0.1.zip | 54.02 KB | 220b183d6b3e90d893a1a1d34e8d2b44 |
Release notes
This is an alpha release. While it is being used on a production site, it is OUR production site (which is still in beta) and therefore will not apply to everyone's sites at the moment. Please help report issues so we can decouple this from the way we do things and make it more open for everyone to use.
