Showing 1 - 11 of 11

Files from Heine Deelstra

Drupal Mime Mail 6.x / 7.x Access Bypass: Posted Mar 6, 2014; Authored by Heine Deelstra | Site drupal.org; Drupal Mime Mail third party module versions 6.x and 7.x suffer from an access bypass vulnerability.; tags | advisory, bypass; SHA-256 | ddb9f598501a7037e5db2e2b223e928001adf33e9f8b04f1009c86673a4c5039; Download | Favorite | View

Drupal Mime Mail 6.x / 7.x Access Bypass: Posted Feb 26, 2014; Authored by Heine Deelstra | Site drupal.org; Drupal Mime Mail third party module version 6.x and 7.x suffer from an access bypass vulnerability.; tags | advisory, bypass; SHA-256 | bcf2575491826b0710730dc39d915d6af8fe276f8edf30d29d0e119fe33af483; Download | Favorite | View

Drupal Chaos Tool Suite 6.x / 7.x Access Bypass: Posted Feb 12, 2014; Authored by Heine Deelstra, Tim Wood | Site drupal.org; Drupal Chaos Tool Suite third party module versions 6.x and 7.x suffer from an access bypass vulnerability.; tags | advisory, bypass; SHA-256 | b0e657a65b2b76f3ce2f31c027468158e1d7d9673d98590aeeda2a229f7a1162; Download | Favorite | View

Drupal Secure Cookie Data 7.x Information Disclosure: Posted Jan 23, 2014; Authored by Heine Deelstra, Jonathan Kuma | Site drupal.org; Drupal Secure Cookie Data third party module version 7.x suffers from information disclosure and hard-coded secret vulnerabilities.; tags | advisory, vulnerability, info disclosure; SHA-256 | 4c08ac10a10f5bae37413be1bd380971d4832c6ed47f59d5ea911658a9dca655; Download | Favorite | View

Drupal Context 6.x / 7.x Access Bypass / Code Execution: Posted Oct 18, 2013; Authored by Heine Deelstra | Site drupal.org; Drupal Context versions 6.x and 7.x suffer from access bypass and arbitrary PHP code execution vulnerabilities.; tags | advisory, arbitrary, php, vulnerability, code execution; SHA-256 | 403881c3e11327dd2eb7b7913732424bdea1ed52fb405e287cb20a0e28ff9c81; Download | Favorite | View

Drupal Mozilla Persona 7.x Cross Site Request Forgery: Posted Aug 8, 2013; Authored by Heine Deelstra | Site drupal.org; Drupal Mozilla Persona third party module version 7.x suffers from a cross site request forgery vulnerability.; tags | advisory, csrf; SHA-256 | de5866c021082ed1759ffd6d9f150bed928dd41269a5fe08bec4bd41d12e95a1; Download | Favorite | View

Drupal Login Security 6.x / 7.x DoS / Bypass: Posted Jun 19, 2013; Authored by Heine Deelstra, David Stoline | Site drupal.org; Drupal Login Security third party module versions 6.x and 7.x suffer from bypass and denial of service vulnerabilities.; tags | advisory, denial of service, vulnerability; SHA-256 | 598061f54bac357e4a742401275a6a32cd65fb79938c18d3b4947c9e8cce8cc3; Download | Favorite | View

Drupal 7.x PHP Code Execution / Information Disclosure: Posted Oct 18, 2012; Authored by Noam Rathaus, Heine Deelstra, Reginaldo Silva | Site drupal.org; Drupal versions prior to 7.16 suffer from arbitrary PHP code execution and information disclosure vulnerabilities. Version 6 is not affected.; tags | advisory, arbitrary, php, vulnerability, code execution, info disclosure; SHA-256 | 18cb2c87e74ebbfd4c998ad47021b871b9bb38f412c18a7d8590840eac09cfc8; Download | Favorite | View

Drupal CKEditor / FCKeditor XSS / XSRF / Code Execution: Posted Mar 15, 2012; Authored by Heine Deelstra | Site drupal.org; CKEditor and FCKeditor modules in Drupal versions 6.x and 7.x suffer from PHP code execution, cross site request forgery, and cross site scripting vulnerabilities.; tags | advisory, php, vulnerability, code execution, xss, csrf; SHA-256 | aaa6ea9e677ff1cded922b9064a43bda0cfc2a65959bfa6b93813933823bdbd6; Download | Favorite | View

DRUPAL-SA-2007-018.txt: Posted Jul 31, 2007; Authored by Heine Deelstra | Site drupal.org; Drupal security advisory - Drupal versions 4.7.x before version 4.7.7 and 5.x versions before version 5.2 suffer from cross site scripting vulnerabilities.; tags | advisory, vulnerability, xss; SHA-256 | 41a5f374d5205819d26273f6854b9a4c964586d0a41ed65fd13b71eb76688a3d; Download | Favorite | View

DRUPAL-SA-2007-017.txt: Posted Jul 31, 2007; Authored by Heine Deelstra | Site drupal.org; Drupal security advisory - Several parts in Drupal core are not protected against cross site request forgeries due to improper use of the Forms API, or by taking action solely on GET requests. Malicious users are able to delete comments and content revisions and disable menu items by enticing a privileged users to visit certain URLs while the victim is logged-in to the targeted site. Drupal versions 5.x below 5.2 are affected.; tags | advisory; SHA-256 | 46f0c7caa6742d83818685617d68d77ee84321da3ab65a8147df22b8fc719a1d; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days