CVE-2009-3656

2009-10-0914:18:00

mitre

www.cve.org

7.2 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.6%

JSON

Cross-site request forgery (CSRF) vulnerability in Shared Sign-On 5.x and 6.x, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users via unknown vectors.

References

drupal.org/node/592488

www.securityfocus.com/bid/36563

exchange.xforce.ibmcloud.com/vulnerabilities/53559