eZ Community » Security Advisories

Security Advisories

Security Advisories

EZSA-2011-01: LDAP user and group strings are not escaped

Thursday 06 December 2012 04:41

Severity : Low

EZSA-2012-010: eZ Publish user login cross site scripting (XSS) vulnerability

Thursday 13 September 2012 02:53

Severity : Medium

EZSA-2012-009: eZOE flash player CSRF security issues

Sunday 08 July 2012 05:17

Severity : Medium

EZSA-2012-008: ezpSessionHandlerPHP based sites don't expire active user sessions upon deactivation of the user

Sunday 08 July 2012 04:44

Severity : Low

EZSA-2011-02: Cross site scripting (XSS) issue in the ezoption datatype

Wednesday 09 May 2012 01:58

Severity : Low

EZSA-2011-03: Cross site scripting (XSS) issue in the ezstarrating extension

Wednesday 09 May 2012 01:31

Severity : Low

EZSA-2012-006: XSS exploit on eZJSCore RUN command when using Firefox

Wednesday 09 May 2012 12:12

Severity : Low

EZSA-2012-005: Block handling access check issue in ezflow extension

Monday 26 March 2012 03:50

Severity : Medium

EZSA-2012-004: Content removal access check issue in ezstyleeditor extension

Monday 26 March 2012 03:50

Severity : High

EZSA-2012-003: Information disclosure & access rights issue in eZ Publish

Monday 26 March 2012 03:50

Severity : Low

EZSA-2012-002: Information disclosure issue in ezoe extension

Monday 26 March 2012 03:50

Severity : Medium

EZSA-2012-001: Information disclosure & access rights issue in ezjscore extension

Monday 26 March 2012 03:49

Severity : High

36 542 Users on board!

Community Project menu

Community Project
- Security Advisories