CVE-2015-7233

2015-09-17T12:59:12
ID CVE-2015-7233
Type cve
Reporter NVD
Modified 2015-09-18T14:38:55

Description

Cross-site request forgery (CSRF) vulnerability in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Import module is enabled, allows remote attackers to hijack the authentication of administrators for requests that create new OSF datasets via unspecified vectors.