The Migrate Tools module provides tools for running and managing Drupal migrations. The module doesnβt sufficiently protect against Cross Site Request Forgery under specific scenarios allowing an attacker to trick an authenticated administrator into initiating a migration. This vulnerability is mitigated by the fact that an attacker must know the name of the migration.
CPE | Name | Operator | Version |
---|---|---|---|
migrate tools | lt | 6.0.3 |