Multiple cross-site request forgery (CSRF) vulnerabilities in the Database Administration (dba) module 4.6.x-*, and before 4.7.x-1.2 in the 4.7.x-1.* series, for Drupal allow remote attackers to perform unauthorized actions as an arbitrary user, a related issue to CVE-2006-5476.
References
Link | Resource |
---|---|
http://drupal.org/node/135549 | Patch Vendor Advisory |
http://secunia.com/advisories/24848 | Patch Vendor Advisory |
http://osvdb.org/34962 | |
http://www.vupen.com/english/advisories/2007/1360 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-04-22 12:19
Updated : 2011-03-07 18:53
NVD link : CVE-2007-2160
Mitre link : CVE-2007-2160
JSON object : View
CWE
Products Affected
drupal
- database_administration_module