Drupal Admin:hover Module Cross Site Request Forgery Vulnerabilities

Admin:hover module for Drupal is prone to multiple cross-site request-forgery vulnerabilities.

Attackers can exploit these issues to perform certain administrative actions and gain unauthorized access to the affected application.

Admin:hover 6.x and 7.x are vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus