Drupal Doubleclick for Publishers third party module version 7.x suffers from a cross site scripting vulnerability.
f902da27306de87a80c9c84bdc766fd5c1449fa544574705accd4a39934242f7
Drupal core versions 6.x and 7.x suffer from impersonation, access bypass, and security hardening vulnerabilities.
f5c6a398f6c3eb4be7409e8de673476647efb02968ec5e6d76e45d68ffbfdae9