Cross-site request forgery (CSRF) vulnerability in the Spider Video Player module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete videos via unspecified vectors.
References
Link | Resource |
---|---|
https://www.drupal.org/node/2437981 | Vendor Advisory |
http://www.openwall.com/lists/oss-security/2015/04/25/6 | |
http://www.securityfocus.com/bid/72817 |
Configurations
Information
Published : 2015-06-15 07:59
Updated : 2016-06-09 14:31
NVD link : CVE-2015-4352
Mitre link : CVE-2015-4352
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
web-dorado
- web-dorado_spider_video_player