news.jpg Выберите тему новостей из списка ниже, а затем выберите новость для чтения.
  •  ( 15 )
  •  ( 3 )
  •  ( 15 )
  •  ( 37 )
    Последние новости от команды разработчиков Joomla!
  •  ( 1 )

TURIZM.RU: Новости туризма
Лента туристических новостей на TURIZM.RU: все новости туризма за день, новости по странам и регионам, погода
TURIZM.RU: Новости туризма
Blog
  • Permissions by Term - Moderately critical - Access bypass - SA-CONTRIB-2017-082

    Project: Permissions by Term
    Version: 8.x-1.x-dev
    Date: 2017-November-08
    Security risk: *Moderately critical* 14/25
    Vulnerability: Access bypass

    Description

     

    The Permissions by Term module extends Drupal by adding functionality for
    restricting access to single nodes via taxonomy terms.

    Submitted by Drupion Support on 8 November 2017 10:40
  • Custom Permissions - Moderately critical - Access bypass - SA-CONTRIB-2017-083

    Project: Custom Permissions
    Version: 8.x-1.x-dev
    Date: 2017-November-08
    Security risk: *Moderately critical* 13/25
    Vulnerability: Access bypass

    Description

     

    Custom Permissions is a lightweight module that allows permissions to be
    created and managed through an administrative form.

    Submitted by Drupion Support on 8 November 2017 10:40
  • Automated Logout - Moderately critical - Cross Site Scripting - SA-CONTRIB-2017-081

    Project: Automated Logout
    Version: 7.x-4.x-dev
    Date: 2017-November-01
    Security risk: *Moderately critical* 14/25
    Vulnerability: Cross Site Scripting

    Description

    This module provides a site administrator the ability to log users out after
    a specified time of inactivity. It is highly customizable and includes "site
    policies" by role to enforce log out.

    The module does not sufficiently filter user-supplied text that is stored in
    the configuration, resulting in a persistent Cross Site Scripting
    vulnerability (XSS).

    Submitted by Drupion Support on 1 November 2017 12:55
  • WordPress 4.8.3 is released

    WordPress 4.8.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.

    WordPress versions 4.8.2 and earlier are affected by an issue where $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability.

    Submitted by Drupion Support on 30 October 2017 10:25
  • Mosaik - Moderately critical - Cross-site scripting - SA-CONTRIB-2017-080

    Project: Mosaik
    Version: 7.x-1.x-dev
    Date: 2017-October-25
    Security risk: *Moderately critical* 13/25
    Vulnerability: Cross-site scripting

    Description

    The Mosaik module enables you to create pages or complex blocks in Drupal
    with the logic of a real mosaic and its pieces.

    Submitted by Drupion Support on 25 October 2017 10:45
  • Brilliant Gallery - Highly critical - Multiple Vulnerabilities - SA-CONTRIB-2017-079

    Project: Brilliant Gallery
    Version: 7.x-1.x-dev
    Date: 2017-October-25
    Security risk: *Highly critical* 20/25
    Vulnerability: Multiple Vulnerabilities

    Description

    This module enables you to display any number of galleries based on images
    located in the files folder.

    Submitted by Drupion Support on 25 October 2017 09:45
  • WordPress 4.9 Beta 4 is now available!

    This software is still in development, so we don’t recommend you run it on a production site. Consider setting up a test site just to play with the new version. To test WordPress 4.9, try the WordPress Beta Tester plugin (you’ll want “bleeding edge nightlies”). Or you can download the beta here (zip).

    Submitted by Drupion Support on 22 October 2017 19:55
  • Yandex.Metrics - Moderately critical - Cross site scripting - SA-CONTRIB-2017-78

    Project: Yandex.Metrics
    Version: 7.x-3.x-dev, 7.x-2.x-dev, 7.x-1.x-dev
    Date: 2017-October-18
    Security risk: *Moderately critical* 13/25
    Vulnerability: Cross site scripting

    Description: 

    The Yandex.Metrics module allows you to look for key indicators of your site
    effectiveness.

    The module doesn't sufficiently let users know a setting page should not be
    given to untrusted users.

    This vulnerability is mitigated by the fact that an attacker must have a role
    with the permission "administer Yandex.Metrics settings."

    Submitted by Drupion Support on 18 October 2017 10:55
  • netFORUM Authentication - Moderately critical - Access Bypass - SA-CONTRIB-2017-077

    Project: netFORUM Authentication
    Version: 7.x-1.0
    Date: 2017-October-11
    Security risk: *Moderately critical* 12/25
    Vulnerability: Access Bypass

    Description: 

    The netFORUM Authentication module implements external authentication for
    users against netFORUM.

    The module does not correctly use flood control making it susceptible to
    brute force attacks.

    Solution: 

    Install the latest version:

    Submitted by Drupion Support on 18 October 2017 09:55
  • WordPress 4.9 Beta 3 has been released

    WordPress 4.9 Beta 3 is now available!

    This software is still in development, so we don’t recommend you run it on a production site. Consider setting up a test site just to play with the new version. To test WordPress 4.9, try the WordPress Beta Tester plugin (you’ll want “bleeding edge nightlies”). Or you can download the beta here (zip).

    Submitted by Drupion Support on 17 October 2017 02:55

A feed could not be found at http://www.novoteka.ru/rss/World.NorthAmerica.Canada

cURL error 6: Couldn't resolve host 'www.temp.nj-iafn.org'

A feed could not be found at http://www.golos.ca/index.php?format=feed&type=rss