Drupal Shared Sign On Module Cross-Site Request Forgery and Session Fixation Vulnerabilities

Solution:
Drupal has discontinued support for the vulnerable module and recommends that users migrate to the Single Sign On module. Please see the references for more information.



 

Privacy Statement
Copyright 2010, SecurityFocus