5 matches found
CVE-2012-2057
Cross-site request forgery CSRF vulnerability in the Ubercart Bulk Stock Updater module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors related to formAPI...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the Ubercart Bulk Stock Updater module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors related to formAPI...
CVE-2012-2057
Cross-site request forgery CSRF vulnerability in the Ubercart Bulk Stock Updater module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors related to formAPI...
CVE-2012-2057
CVE-2012-2057 affects the Ubercart Bulk Stock Updater module for Drupal 6.x (Ubercart 2.x). The vulnerability arises because the module does not properly use the Drupal Form API, enabling a CSRF attack that could allow remote attackers to hijack the authentication of unspecified victims via unkno...
SA-CONTRIB-2012-036 - Multiple Modules Unsupported
CVE: CVE-2012-2056 Content Lock Is a module that prevents users from concurrent editing of nodes. This module does not use a token for unlocking a content lock. This leads to a CSRF attack vector. CVE: CVE-2012-2057 Ubercart Bulk Stock Updater is an extension module for Ubercart 2.x running on...