Количество 4
Количество 4
CVE-2017-6379
Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID.
CVE-2017-6379
Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID.
CVE-2017-6379
Some administrative paths in Drupal 8.2.x before 8.2.7 did not include ...
GHSA-gxxq-fhc7-3jv9
Drupal Cross-Site Request Forgery (CSRF)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-6379 Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID. | CVSS3: 7.5 | 0% Низкий | больше 8 лет назад |
 | CVE-2017-6379 Some administrative paths in Drupal 8.2.x before 8.2.7 did not include protection for CSRF. This would allow an attacker to disable some blocks on a site. This issue is mitigated by the fact that users would have to know the block ID. | CVSS3: 7.5 | 0% Низкий | больше 8 лет назад |
| CVE-2017-6379 Some administrative paths in Drupal 8.2.x before 8.2.7 did not include ... | CVSS3: 7.5 | 0% Низкий | больше 8 лет назад |
| GHSA-gxxq-fhc7-3jv9 Drupal Cross-Site Request Forgery (CSRF) | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу