[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <Pine.LNX.4.64.1504221720260.26645@beijing.mitre.org>
Date: Wed, 22 Apr 2015 17:22:45 -0400 (EDT)
From: cve-assign@...re.org
To: Pere Orga <pere@...a.cat>
cc: oss-security@...ts.openwall.com, kseifried@...hat.com,
cve-assign@...re.org
Subject: Re: CVE requests for Drupal contributed modules
>DRUPAL-SA-CONTRIB-2015-039 - Views - Open redirect
Use CVE-2015-3378.
>DRUPAL-SA-CONTRIB-2015-039 - Views - Access bypass
>https://www.drupal.org/node/2424403
Use CVE-2015-3379.
>DRUPAL-SA-CONTRIB-2015-040 - Webform prepopulate block - XSS
>https://www.drupal.org/node/2424405
Use CVE-2015-1621.
>DRUPAL-SA-CONTRIB-2015-041 - Feature Set - CSRF
>https://www.drupal.org/node/2424409
Use CVE-2015-3380.
>DRUPAL-SA-CONTRIB-2015-042 - Node basket - CSRF
Use CVE-2015-3382.
>DRUPAL-SA-CONTRIB-2015-042 - Node basket - XSS
Use CVE-2015-3381.
>DRUPAL-SA-CONTRIB-2015-042 - Node basket - Open redirect
>https://www.drupal.org/node/2424419
Use CVE-2015-3383.
>DRUPAL-SA-CONTRIB-2015-043 - Commerce Balanced Payments - XSS
Use CVE-2015-3384.
>DRUPAL-SA-CONTRIB-2015-043 - Commerce Balanced Payments - CSRF
>https://www.drupal.org/node/2424435
Use CVE-2015-3388.
>DRUPAL-SA-CONTRIB-2015-044 - Taxonomy Path - XSS
>https://www.drupal.org/node/2424439
Use CVE-2015-3385.
>DRUPAL-SA-CONTRIB-2015-045 - Node Access Product - XSS
>https://www.drupal.org/node/2424349
Use CVE-2015-3386.
>DRUPAL-SA-CONTRIB-2015-046 - Taxonomy Tools - XSS
>https://www.drupal.org/node/2424355
Use CVE-2015-3387.
---
CVE assignment team, MITRE CVE Numbering Authority M/S M300
202 Burlington Road, Bedford, MA 01730 USA
[ PGP key available through http://cve.mitre.org/cve/request_id.html ]
Powered by blists - more mailing lists
Please check out the
Open Source Software Security Wiki, which is counterpart to this
mailing list.
Confused about mailing lists and their use?
Read about mailing lists on Wikipedia
and check out these
guidelines on proper formatting of your messages.
