|
Drupal Chat Room Session Hijacking and Information Disclosure Vulnerabilities
Drupal Chat Room is prone to session-hijacking and information-disclosure vulnerabilities because of multiple design errors in the affected application. An attacker can exploit these issues to gain access to the affected application with the privileges of the hijacked user and can obtain sensitive information. This may lead to other attacks. All prerelease versions of Chat Room are vulnerable to this issue. |
|
|
Privacy Statement |
