Lucene search
HistorySep 17, 2012 - 8:55 p.m.
CVE-2012-2061
cve-2012-2061
csrf vulnerability
drupal
admin tools
authentication hijacking
nvd
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
52.7%
Cross-site request forgery (CSRF) vulnerability in the Admin tools module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors involving “not checking tokens.”
Affected configurations
Node
nijskens_rafadmintools
drupaldrupalMatch-
| CPE | Name | Operator | Version |
|---|---|---|---|
| nijskens_raf:admintools | nijskens raf admintools | eq | * |
Related
prion
prion
Cross site request forgery (csrf)
2012-09-17 20:55:00
nvd
nvd
CVE-2012-2061
2012-09-17 20:55:02
cvelist
cvelist
CVE-2012-2061
2012-09-17 20:00:00
drupal
drupal
SA-CONTRIB-2012-036 - Multiple Modules Unsupported
2012-03-14 00:00:00
7.3 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
52.7%
Related for CVE-2012-2061