Drupal Simplenews Scheduler third party module version 6.x suffers from an arbitrary PHP code execution vulnerability.
0338d0b9bf77e2858fe599964e5a15cf1472907d48b30ce3c4aab742e9008852
Drupal Simplenews third party module versions 6.x and 7.x suffer from an information disclosure vulnerability.
c6685213ac066fa6bc378bac975fe3b4f3589d5f1e3d5de4ed106c5fa290eb9a