exploitDog

GHSA-p9vj-vx52-9cfg

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in the Registration codes module before 6.x-1.6 for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete registration codes via unspecified vectors.

Cross-site request forgery (CSRF) vulnerability in the Registration codes module before 6.x-1.6 for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete registration codes via unspecified vectors.

Ссылки

EPSS

Процентиль: 35%

0.00142

Низкий

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2015-4361

nvd

больше 10 лет назад

Cross-site request forgery (CSRF) vulnerability in the Registration codes module before 6.x-1.6 for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete registration codes via unspecified vectors.

EPSS

Процентиль: 35%

0.00142

Низкий

CVE ID

Дефекты

CWE-352