3 matches found
CVE-2013-2158
Cross-site request forgery CSRF vulnerability in the Services module 6.x-3.x and 7.x-3.x before 7.x-3.4 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2013-2158
Summary of CVE-2013-2158 (Drupal Services CSRF) : The Services module for Drupal 6.x-3.x and 7.x-3.x is vulnerable to Cross-Site Request Forgery due to insufficient verification of POST/PUT/DELETE requests with session cookie authentication. This could allow remote attackers to hijack the authent...
CVE-2013-2158
Cross-site request forgery CSRF vulnerability in the Services module 6.x-3.x and 7.x-3.x before 7.x-3.4 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...