oss-sec mailing list archives

CVE requests for Drupal contributed modules

From: Pere Orga <pere () orga cat>
Date: Sun, 22 Mar 2015 20:14:58 +0100

Hi

Please can I have CVEs assigned to the following vulnerabilities:

SA-CONTRIB-2015-063 - Webform - XSS related to Webform Submissions
SA-CONTRIB-2015-063 - Webform - XSS related to Blocks
https://www.drupal.org/node/2445935

SA-CONTRIB-2015-078 - Webform - XSS related to Webform Components
https://www.drupal.org/node/2454903

SA-CONTRIB-2015-079 - Chaos tool suite (ctools) - Access bypass
SA-CONTRIB-2015-079 - Chaos tool suite (ctools) - Open redirect
https://www.drupal.org/node/2454909

SA-CONTRIB-2015-080 - Profile2 Privacy - Cross Site Scripting (XSS)
https://www.drupal.org/node/2455011


Regards
Pere Orga on behalf of the Drupal Security Team

Current thread:

CVE requests for Drupal contributed modules Pere Orga (Feb 05)
- <Possible follow-ups>
- CVE requests for Drupal contributed modules Pere Orga (Feb 13)
- CVE requests for Drupal contributed modules Pere Orga (Mar 22)