EUVD-2015-3396

Malware in sbrugna...

CVE-2015-3351

Multiple cross-site request forgery CSRF vulnerabilities in the Log Watcher module before 6.x-1.2 for Drupal allow remote attackers to hijack the authentication of administrators for requests that 1 enable, 2 disable, or 3 delete a report via unspecified vectors...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in the Log Watcher module before 6.x-1.2 for Drupal allow remote attackers to hijack the authentication of administrators for requests that 1 enable, 2 disable, or 3 delete a report via unspecified vectors...

CVE-2015-3351

CVE-2015-3351 affects the Drupal Log Watcher module (6.x-1.x) before 6.x-1.2. The issue is a CSRF vulnerability in the report administration links that can allow an attacker to trigger actions (enable, disable, or delete a report) on behalf of an authenticated administrator, effectively hijacking...

CVE-2015-3351

Multiple cross-site request forgery CSRF vulnerabilities in the Log Watcher module before 6.x-1.2 for Drupal allow remote attackers to hijack the authentication of administrators for requests that 1 enable, 2 disable, or 3 delete a report via unspecified vectors...

Multiple Cross-Site Request Forgery Vulnerabilities in Drupal Log Watcher Module

Drupal is a free and open source content management system developed in PHP. Multiple cross-site request forgery vulnerabilities exist in the Drupal Log Watcher module, which can be exploited by an attacker to perform certain unauthorized actions and gain access to affected applications...

SA-CONTRIB-2015-010 - Log Watcher - Cross Site Request Forgery (CSRF)

Log Watcher allows you to monitor your site logs in a systematic way by setting up scheduled aggregations for specific log types. The report administration links are not properly protected from CSRF. A malicious user could cause a log administrator to enable, disable, or delete a Log Watcher repo...