Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-3408

Malware in sbrugna...

6.8CVSS6.4AI score0.00656EPSS
Exploits0References5
NVD
NVD
added 2015/04/21 4:59 p.m.17 views

CVE-2015-3363

Cross-site request forgery CSRF vulnerability in the Contact Form Fields module before 6.x-2.3 for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete fields via unspecified vectors...

6.8CVSS7.1AI score0.00656EPSS
Exploits0References4
Prion
Prion
added 2015/04/21 4:59 p.m.14 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Contact Form Fields module before 6.x-2.3 for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete fields via unspecified vectors...

6.8CVSS7.6AI score0.00656EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2015/04/21 4:0 p.m.45 views

CVE-2015-3363

CVE-2015-3363 is a CSRF vulnerability in the Drupal Contact Form Fields module prior to 6.x-2.3. It allows an attacker to trick an authenticated administrator into performing actions (notably deleting fields) on behalf of the admin, via unspecified vectors. Affected versions are all before 6.x-2....

6.8CVSS7.3AI score0.00656EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2015/04/21 4:0 p.m.22 views

CVE-2015-3363

Cross-site request forgery CSRF vulnerability in the Contact Form Fields module before 6.x-2.3 for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete fields via unspecified vectors...

7.1AI score0.00656EPSS
Exploits0References4
CNVD
CNVD
added 2015/01/20 12:0 a.m.2 views

Multiple Cross-Site Request Forgery Vulnerabilities in Drupal Contact Form Fields

Drupal is a free and open source content management system developed in PHP. Multiple cross-site request forgery vulnerabilities exist in Drupal Contact Form Fields, which can be exploited by an attacker to perform certain unauthorized actions and gain access to affected applications...

6.8CVSS7.1AI score0.00656EPSS
Exploits0References1
Drupal
Drupal
added 2015/01/14 12:0 a.m.22 views

SA-CONTRIB-2015-020 - Contact Form Fields - Cross Site Request Forgery (CSRF)

The Contact Form Fields module enables you to create additional fields to site-wide contact form. Some links were not properly protected from CSRF. A malicious user could cause an administrator to delete fields by getting the administrator's browser to make a request to a specially-crafted URL...

6.8CVSS6.3AI score0.00656EPSS
Exploits0References9
Rows per page
Query Builder