2 matches found
CVE-2008-6532
Multiple cross-site request forgery CSRF vulnerabilities in the update feature in Drupal 5.x before 5.13 and 6.x before 6.7 allow remote attackers to perform unauthorized actions as the superuser via unspecified vectors, as demonstrated by causing the superuser to "execute old updates" that modif...
CVE-2008-6532
CVE-2008-6532 describes multiple CSRF vulnerabilities in Drupal’s update feature. Affected software: Drupal 5.x before 5.13 and 6.x before 6.7. The issue enables remote attackers to cause the superuser to perform unauthorized actions via unspecified vectors, exemplified by the superuser executing...