Multiple Cross-Site Scripting (XSS) flaws were discovered in the Webform Drupal module: SA-CONTRIB-2015-063 - Webform - XSS related to Webform Submissions SA-CONTRIB-2015-063 - Webform - XSS related to Blocks https://www.drupal.org/node/2445935 SA-CONTRIB-2015-078 - Webform - XSS related to Webform Components https://www.drupal.org/node/2454903 These issues are resolved in versions: Webform 6.x-3.23, Webform 7.x-3.23, Webform 7.x-4.5
Created drupal7-webform tracking bugs for this issue: Affects: fedora-all [bug 1205125] Affects: epel-6 [bug 1205126]
drupal7-webform-4.7-1.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report.
drupal7-webform-4.7-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
drupal7-webform-4.7-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.
drupal7-webform-4.7-1.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
Hi Martin! Can we close this issue because the updated modules are in stable repositories?
(In reply to Peter Borsa from comment #6) > Hi Martin! > > Can we close this issue because the updated modules are in stable > repositories? Definitely!