govdelivery 6.x-1.1

Downloads

Download tar.gz 13.86 KB

MD5: aea3ea1e130582e5f3ceeae743173b7f

SHA-1: ee71caa0f5769dda1ff2883d0647abb37e90efc2

SHA-256: 754377d03ca6a523a59f259fcdb6c6caeeb50f475eab8e7c1296c148df2dbc26

Download zip 15.8 KB

MD5: bc771cb0c278121ee5413c302f6cb8d7

SHA-1: 96c628a0686b46bdeaea4cdb0ae7f16fc1d68485

SHA-256: 1e3592cfd8c82a3f8bcd42dbbeea33b61f109d7bbfc7d850331a49b747a820ea

Release notes

SA-CONTRIB-2010-087 - GovDelivery - Cross site scripting
The GovDelivery module provides integration with the GovDelivery On-Demand Mailer service, a web service for GovDelivery customers that sends messages directly based on configured account information. The module replaces the backend of SMTP library in your Drupal site with calls to the GovDelivery service, so all mail sent from your site uses the ODM service.
The module does not sanitize some of the user-supplied data before displaying it (for Drupal 6.x-1.0 only), leading to a Cross Site Scripting (XSS).

For more information see the Security Advisory at: http://drupal.org/node/880698

Created by: ben.bunk
Created on: 11 Aug 2010 at 22:27 UTC
Last updated: 11 Aug 2010 at 22:41 UTC

6.x-1.1

Security update

Unsupported

Other releases

View usage statistics for this release

govdelivery 6.x-1.1

Downloads

Release notes

Other releases

News items

Our community

Documentation

Drupal code base

Governance of community