User Import Project - User Import CVE - CVE Search - CVE Details

Filtered by vendor User Import Project Subscribe

Filtered by product User Import

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-4390	1 User Import Project	1 User Import	2016-06-09	6.8 MEDIUM	N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in the User Import module 6.x-4.x before 6.x-4.4 and 7.x-2.x before 7.x-2.3 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) continue or (2) delete an ongoing import via unspecified vectors.

Vulnerabilities (CVE)