Skip to main content
Skip to search
Can we use first and third party cookies and web beacons to
understand our audience, and to tailor promotions you see
?
Yes, please
No, do not track me
Drupal.org home
Why Drupal?
About Drupal
Platform overview
Drupal 10
Content Authoring
Content as a Service
Decoupled
Accessibility
Marketing Automation
Multilingual
Security
Personalization
Case studies
Video series
News
Use cases
For Developers
For Marketers
E-commerce
Education
FinTech
Government
Healthcare
High Tech
Nonprofit
Retail
Travel
Resources
Installing Drupal
Documentation
User guide
Local Development Guide
Security
News
Blog
Drupal 7 Migrations
Services
Find an Agency Partner
Find a D7 Migration Partner
Find Integrations & Hosting
Find Drupal Training
Become a Certified Partner
Community
How to Contribute
About the Community
Support
Community Governance
Jobs/Careers
Events
DrupalCon Portland 2024
DrupalCon Barcelona 2024
Community Events
Download
Download
Modules
Themes
Distributions
Issue queues
Browse Repository
Give
Drupal Association
Become an Organization Member
Become a Certified Partner
Become an Individual Member
Make a Donation
Discover Drupal
Drupal Swag Shop
Demo
Demo online
Download
Return to content
Search form
Search
Log in
Create account
Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
Learn more
Deprecated - Security advisories for contributed projects
This forum is deprecated —
view current Drupal contributed projects security advisories
SA-CONTRIB-2012-005 - Vote up/down - Cross Site Scripting
By
Drupal Security Team
on
11 Jan 2012 at 16:49 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2012-005
Project:
Vote Up/Down
(third-party module)
Version: 6.x
Date: 2012-January-11
Security risk:
Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
SA-CONTRIB-2012-004 - Date - SQL injection
By
Drupal Security Team
on
11 Jan 2012 at 14:58 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2012-004
Project:
Date
(third-party module)
Version: 6.x
Date: 2012-January-11
Security risk:
Moderately critical
Exploitable from: Remote
Vulnerability: SQL Injection
SA-CONTRIB-2012-003 - Fill PDF - Multiple vulnerabilities
By
Drupal Security Team
on
4 Jan 2012 at 23:03 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2012-003
Project:
Fill PDF
(third-party module)
Version: 6.x, 7.x
Date: 2012-JANUARY-04
Security risk:
Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass, Arbitrary code execution
SA-CONTRIB-2012-002 - Lingotek - Cross Site Scripting
By
Drupal Security Team
on
4 Jan 2012 at 20:07 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2012-002
Project:
Lingotek Collaborative Translation
(third-party module)
Version: 6.x
Date: 2012-January-04
Security risk:
Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
SA-CONTRIB-2012-001 - Registration Codes - Access bypass
By
Drupal Security Team
on
4 Jan 2012 at 19:34 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2012-001
Project: Registration Codes (third-party module)
Version: 6.x
Date: 2012-January-04
Security risk: Critical
Exploitable from: Remote
Vulnerability: Access bypass
SA-CONTRIB-2011-059 - Meta tags quick - Cross Site Scripting (XSS)
By
Drupal Security Team
on
14 Dec 2011 at 18:44 UTC
Advisory ID: DRUPAL-SA-CONTRIB-2011-059
Project:
Meta tags quick
(third-party module)
Version: 7.x
Date: 2011-December-14
Security risk:
Less critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting
Pages
« first
‹ previous
…
115
116
117
118
119
120
121
122
123
…
next ›
last »
Subscribe with RSS