what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Damien Tournoud

Drupal 6.x / 7.x Impersonation / Access Bypass / Hardening

Posted Jan 16, 2014

Authored by David Rothstein, Damien Tournoud, Christian Mainka, Matt Vance, Vladislav Mladenov | Site drupal.org

Drupal core versions 6.x and 7.x suffer from impersonation, access bypass, and security hardening vulnerabilities.

tags | advisory, vulnerability

SHA-256 | f5c6a398f6c3eb4be7409e8de673476647efb02968ec5e6d76e45d68ffbfdae9

Download | Favorite | View

Drupal Core 6.x / 7.x Access Bypass / Code Execution

Posted Dec 20, 2012

Authored by Derek Wright, Damien Tournoud, Simon Rycroft | Site drupal.org

Drupal core versions 6.x and 7.x suffer from access bypass and arbitrary PHP code execution vulnerabilities.

tags | advisory, arbitrary, php, vulnerability, code execution

SHA-256 | 863826bea3efe1f645f1de1e0773a3829b8f2f16709021caf44a55976aa6599f

Download | Favorite | View

Drupal RESTful Web Services 7.x Cross Site Request Forgery

Posted Nov 15, 2012

Authored by Klaus Purer, Damien Tournoud | Site drupal.org

Drupal RESTful Web Services third party module version 7.x suffers from a cross site request forgery vulnerability.

tags | advisory, web, csrf

SHA-256 | 40364596fa30c85c6f349e11120358f2e6a21296b38bc921aa0adaea143ba9a8

Download | Favorite | View