drupal -- cross site request forgery

2008-01-10T00:00:00
ID 4451A4C9-C05E-11DC-982E-001372FD0AF2
Type freebsd
Reporter FreeBSD
Modified 2010-05-12T00:00:00

Description

The Drupal Project reports:

The aggregator module fetches items from RSS feeds and makes them available on the site. The module provides an option to remove items from a particular feed. This has been implemented as a simple GET request and is therefore vulnerable to cross site request forgeries. For example: Should a privileged user view a page containing an <img> tag with a specially constructed src pointing to a remove items URL, the items would be removed.