9 matches found
CVE-2013-4446
The jsondecode function in plugins/contextreactionblock.inc in the Context module 6.x-2.x before 6.x-3.2 and 7.x-3.x before 7.x-3.0 for Drupal, when using a version of PHP that does not support the jsondecode function, allows remote attackers to execute arbitrary PHP code via unspecified vectors...
CVE-2013-4446
CVE-2013-4446 affects Drupal Context module (drupal6-context 6.x-2.x before 6.x-3.2; 7.x-3.x before 7.x-3.0). The vulnerability arises when PHP lacks a json_decode function or json library, allowing remote attackers to execute arbitrary PHP code via Ajax-related vectors (possibly involving eval)....
CVE-2013-4446
The jsondecode function in plugins/contextreactionblock.inc in the Context module 6.x-2.x before 6.x-3.2 and 7.x-3.x before 7.x-3.0 for Drupal, when using a version of PHP that does not support the jsondecode function, allows remote attackers to execute arbitrary PHP code via unspecified vectors...
Fedora Update for drupal6-context FEDORA-2013-21298
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 19 : drupal6-context-3.3-1.fc19 (2013-21231)
CVE-2013-4445/CVE-2013-4446 Context, a drupal module, which allows you to manage contextual conditions and reactions for different portions of your site, was found to have two severe security issues. First issue is that the module allows execution of PHP code via manipulation of a URL argument in...
Fedora 19 : drupal7-context-3.1-1.fc19 (2013-20965)
Update to upstream 3.1 release for bug fixes - Upstream changelog for this release: https://drupal.org/node/2113785 - Fixes CVE-2013-4445, CVE-2013-4446 BZ 1020777, BZ 1020262, BZ 1020781, BZ 1020784 Upstream updated to rc1 Note that Tenable Network Security has extracted the preceding...
Fedora 18 : drupal7-context-3.1-1.fc18 (2013-20976)
Update to upstream 3.1 release for bug fixes - Upstream changelog for this release: https://drupal.org/node/2113785 - Fixes CVE-2013-4445, CVE-2013-4446 BZ 1020777, BZ 1020262, BZ 1020781, BZ 1020784 Upstream updated to rc1 Note that Tenable Network Security has extracted the preceding...
Fedora Update for drupal7-context FEDORA-2013-20976
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : drupal7-context-3.1-1.fc20 (2013-20942)
Update to upstream 3.1 release for bug fixes - Upstream changelog for this release: https://drupal.org/node/2113785 - Fixes CVE-2013-4445, CVE-2013-4446 BZ 1020777, BZ 1020262, BZ 1020781, BZ 1020784 Note that Tenable Network Security has extracted the preceding description block directly from...