Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-5594

Опубликовано: 19 окт. 2007
Источник: ubuntu
Приоритет: low
CVSS2: 4.3

Описание

Drupal 5.x before 5.3 does not apply its Drupal Forms API protection against the user deletion form, which allows remote attackers to delete users via a cross-site request forgery (CSRF) attack.

РелизСтатусПримечание
dapper

DNE

devel

not-affected

5.5-1ubuntu1
edgy

DNE

feisty

DNE

gutsy

released

5.2-2ubuntu2.1
upstream

released

5.3

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

nvd
почти 18 лет назад

Drupal 5.x before 5.3 does not apply its Drupal Forms API protection against the user deletion form, which allows remote attackers to delete users via a cross-site request forgery (CSRF) attack.

debian
почти 18 лет назад

Drupal 5.x before 5.3 does not apply its Drupal Forms API protection a ...

github
больше 3 лет назад

Drupal 5.x before 5.3 does not apply its Drupal Forms API protection against the user deletion form, which allows remote attackers to delete users via a cross-site request forgery (CSRF) attack.

4.3 Medium

CVSS2