Node Basket Security Vulnerabilities and Issues — Node Basket CVE List

Lucene search

InsiteNode Basket

2 matches found

CVE•added 2015/04/21 6:59 p.m.•35 views

CVE-2015-3382

Multiple cross-site request forgery (CSRF) vulnerabilities in the Node basket module for Drupal allow remote attackers to hijack the authentication of arbitrary users for requests that (1) add or (2) remove nodes from a basket via unspecified vectors.

5.8CVSS7.5AI score0.00126EPSS

CVE•added 2015/04/21 6:59 p.m.•31 views

CVE-2015-3383

Open redirect vulnerability in the Node basket module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

5.8CVSS6.9AI score0.00253EPSS