Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.64.1501031909160.1923@beijing.mitre.org>
Date: Sat, 3 Jan 2015 19:11:10 -0500 (EST)
From: cve-assign@...re.org
To: Pere Orga <gotrunks@...il.com>
cc: oss-security@...ts.openwall.com, cve-assign@...re.org
Subject: Re: CVE requests: Drupal contributed modules


> Please could some CVEs be assigned to the following announcements, if
> they have not been already?
>
> https://www.drupal.org/node/2386387

CVE-2014-9498 - SA-CONTRIB-2014-116 - Webform Invitation XSS

> https://www.drupal.org/node/2390839

CVE-2014-9499 - SA-CONTRIB-2014-121 - Godwin's Law XSS

> https://www.drupal.org/node/2390849

CVE-2014-9500 - SA-CONTRIB-2014-122 - MoIP XSS

> https://www.drupal.org/node/2390897

CVE-2014-9501 - SA-CONTRIB-2014-124 - Poll Chart XSS

> https://www.drupal.org/node/2394979

CVE-2014-9502 - SA-CONTRIB-2014-126 - Open Atrium - CSRF
CVE-2014-9503 - SA-CONTRIB-2014-126 - Open Atrium - Access Bypass
CVE-2014-9504 - SA-CONTRIB-2014-126 - Open Atrium - OG Subgroups Access Bypass

> https://www.drupal.org/node/2395015

CVE-2014-9505 - SA-CONTRIB-2014-127 - School Administration XSS

---

CVE assignment team, MITRE CVE Numbering Authority M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.