19 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-3233
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.38 allows remote attackers to redirect users to arbitrary web sites and conduct phishin...
CVE-2015-7943
Removed by vendor...
Drupal 7.x < 7.38 Multiple Vulnerabilities
Binary data 9217.prm...
Mageia: Security Advisory (MGASA-2015-0253)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : drupal7-7.38-1.fc21 (2015-10189)
Release 7.38 is a security fix release - Upstream release notes: https://www.drupal.org/drupal-7.38-release-notes Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...
Fedora Update for drupal7 FEDORA-2015-10189
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-3233
Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.38 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
CVE-2015-3233
Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.38 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
CVE-2015-3233
CVE-2015-3233 is an open redirect vulnerability in the Drupal Overlay module for Drupal 7.x, caused by insufficient URL validation. It affects Drupal 7.x prior to 7.38 (per CVE description). Debi an advisory notes fixes across Drupal7 packages in multiple releases (e.g., Wheezy: 7.14-2+deb7u10; J...
CVE-2015-3233
Removed by vendor...
Debian DSA-3291-1 : drupal7 - security update
Several vulnerabilities were found in drupal7, a content management platform used to power websites. - CVE-2015-3231 Incorrect cache handling made private content viewed by 'user 1' exposed to other, non-privileged users. - CVE-2015-3232 A flaw in the Field UI module made it possible for attacker...
[SECURITY] [DSA 3291-1] drupal7 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3291-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3291-1] drupal7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3291-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 18, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3291-1] drupal7 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3291-1 [email protected] https://www.debian.org/security/ Sebastien Delafond June 18, 2015 https://www.debian.org/security/faq -...
DSA-3291-1 drupal7 - security update
Bulletin has no description...
jQuery Update - Less Critical - Open Redirect - SA-CONTRIB-2015-123
The jQuery Update module enables you to update jQuery on your site. The module ships with a modified version of the core Overlay JavaScript file, which is vulnerable to an open redirect attack see SA-CORE-2015-002. Only sites with the Overlay module enabled are vulnerable. CVE identifiers issued...
Drupal Core - Critical - Multiple Vulnerabilities - SA-CORE-2015-002
Impersonation OpenID module - Drupal 6 and 7 - Critical A vulnerability was found in the OpenID module that allows a malicious user to log in as other users on the site, including administrators, and hijack their accounts. This vulnerability is mitigated by the fact that the victim must have an...
Acquia Cloud Site Factory Connector - Less Critical - Open Redirect - SA-CONTRIB-2015-125
Acquia Cloud Site Factory provides an environment and a robust set of tools that simplify management of many Drupal sites, allowing you to quickly deliver and manage any number of websites. The module ships with a modified version of the core Overlay JavaScript file, which is vulnerable to an ope...
Debian: Security Advisory (DSA-3291-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...