FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
57580fcc-1a61-11e8-97e0-00e04c1ea73d	drupal -- Drupal Core - Multiple Vulnerabilities Drupal Security Team reports: CVE-2017-6926: Comment reply form allows access to restricted content CVE-2017-6927: JavaScript cross-site scripting prevention is incomplete CVE-2017-6928: Private file access bypass - Moderately Critical CVE-2017-6929: jQuery vulnerability with untrusted domains - Moderately Critical CVE-2017-6930: Language fallback can be incorrect on multilingual sites with node access restrictions CVE-2017-6931: Settings Tray access bypass CVE-2017-6932: External link injection on 404 pages when linking to the current page Discovery 2018-02-21 Entry 2018-02-25 drupal7 < 7.56 drupal8 < 8.4.4 CVE-2017-6928 CVE-2017-6926 CVE-2017-6927 CVE-2017-6929 CVE-2017-6930 CVE-2017-6931 CVE-2017-6932

VuXML ID

Description

57580fcc-1a61-11e8-97e0-00e04c1ea73d

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team reports:

CVE-2017-6926: Comment reply form allows access to restricted content

CVE-2017-6927: JavaScript cross-site scripting prevention is incomplete

CVE-2017-6928: Private file access bypass - Moderately Critical

CVE-2017-6929: jQuery vulnerability with untrusted domains - Moderately Critical

CVE-2017-6930: Language fallback can be incorrect on multilingual sites with node access restrictions

CVE-2017-6931: Settings Tray access bypass

CVE-2017-6932: External link injection on 404 pages when linking to the current page

Discovery 2018-02-21
Entry 2018-02-25
drupal7

< 7.56

drupal8

< 8.4.4

CVE-2017-6928
CVE-2017-6926
CVE-2017-6927
CVE-2017-6929
CVE-2017-6930
CVE-2017-6931
CVE-2017-6932