EUVD-2012-2298

Malware in sbrugna...

CVE-2012-2305

Cross-site request forgery CSRF vulnerability in the Node Gallery module for Drupal 6.x-3.1 and earlier allows remote attackers to hijack the authentication of certain users for requests that create node galleries...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Node Gallery module for Drupal 6.x-3.1 and earlier allows remote attackers to hijack the authentication of certain users for requests that create node galleries...

CVE-2012-2305

The CVE-2012-2305 issue affects the Drupal Node Gallery contributed module, specifically versions 6.x-3.1 and earlier. The root cause is a Cross-Site Request Forgery (CSRF) vulnerability that allows remote attackers to hijack the authentication of certain users when creating node galleries. The p...

CVE-2012-2305

Cross-site request forgery CSRF vulnerability in the Node Gallery module for Drupal 6.x-3.1 and earlier allows remote attackers to hijack the authentication of certain users for requests that create node galleries...

SA-CONTRIB-2012-068 - Node Gallery - Cross Site Request Forgery (CSRF) - Unsupported

CVE: CVE-2012-2305 Node gallery enable users to create a more flexible and powerful gallery that are fully integrated with Drupal's core node system. This module does not protect a CSRF attack when creating node galleries. Versions affected 6.x-3.1 and before Drupal core is not affected. If you d...