← volver
CVE-2014-9502

CVE-2014-9502

EPSS 1.0%
Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified sub modules in the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal allow remote attackers to hijack the authentication of unknown victims via vectors related to menu callbacks.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/99655https://www.drupal.org/node/2394979https://www.drupal.org/node/2395045http://www.openwall.com/lists/oss-security/2015/01/04/6