what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from David Rothstein

Drupal 6.x / 7.x Impersonation / Access Bypass / Hardening

Posted Jan 16, 2014

Authored by David Rothstein, Damien Tournoud, Christian Mainka, Matt Vance, Vladislav Mladenov | Site drupal.org

Drupal core versions 6.x and 7.x suffer from impersonation, access bypass, and security hardening vulnerabilities.

tags | advisory, vulnerability

SHA-256 | f5c6a398f6c3eb4be7409e8de673476647efb02968ec5e6d76e45d68ffbfdae9

Download | Favorite | View

Drupal Core 6.x / 7.x Cross Site Scripting / Access Bypass

Posted Jan 17, 2013

Authored by David Rothstein, Christian Johansson, Kressin Roger, t.ashula, Mark Lindsey, saschadrupal, Anders Olsson | Site drupal.org

Drupal core versions 6.x and 7.x suffer from access bypass and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss

SHA-256 | 767f93d3ae3c6957c0a66f13e97ff3026dad0468f9cfa1b4442a2dcce8f02268

Download | Favorite | View

Drupal Bundle Copy 7.x Cross Site Scripting

Posted Mar 29, 2012

Authored by David Rothstein | Site drupal.org

The Drupal Bundle Copy module version 6.x suffers from an arbitrary code execution vulnerability.

tags | advisory, arbitrary, code execution

SHA-256 | c91035ffcabe2a3b441c6f0e5b74a15d68101edb844b0764bfa9860191cf19cf

Download | Favorite | View