CVE-2015-3380

2015-04-21T14:59:02
ID CVE-2015-3380
Type cve
Reporter NVD
Modified 2016-12-05T22:00:35

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the Feature Set module for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) enable or (2) disable a module via unspecified vectors.