← back
CVE-2015-4349

CVE-2015-4349

EPSS 0.6%
Cross-site request forgery (CSRF) vulnerability in the Spider Contacts module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete contact categories via unspecified vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.drupal.org/node/2437973http://www.openwall.com/lists/oss-security/2015/04/25/6http://www.securityfocus.com/bid/72805