CVE-2015-4379

2015-06-15T10:59:36
ID CVE-2015-4379
Type cve
Reporter NVD
Modified 2016-06-09T17:38:19

Description

Cross-site request forgery (CSRF) vulnerability in the Webform Multiple File Upload module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentication of certain users for requests that delete files via unspecified vectors.