[LINK] Fwd: Drupal Security Alerts

stephen at melbpc.org.au stephen at melbpc.org.au
Fri Feb 1 23:08:23 EST 2008


> Subject: Drupal Security Alerts
> Date: Fri, 01 Feb 2008 12:03:58 +1100
   
AusCert announced two Drupal vulnerabilities. One concerns the OpenID
module for version 5.x-1.0 and earlier. The second concerns the comment
upload module in both versions 4.7.x and 5.x.  

If you have Drupal installed on either a hosted website, or on a local
web server and either or both of these modules are enabled please refer
to both the following URL’s to help determine if you are affected:

http://drupal.org/project/openid http://drupal.org/project/comment_upload 

--

Cheers people
Stephen Loosley
Victoria, Australia


More information about the Link mailing list