Htaccess Project - Htaccess CVE - CVE Search - CVE Details

Filtered by vendor Htaccess Project Subscribe

Filtered by product Htaccess

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-3349	1 Htaccess Project	1 Htaccess	2016-12-05	6.8 MEDIUM	N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in the Htaccess module before 7.x-2.3 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) deploy or (2) delete an .htaccess file via unspecified vectors.

Vulnerabilities (CVE)