Security Advisory

CVE-2012-0826

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-10-28 22:00:00

Last updated 2024-08-06 18:38:14

Assigner redhat

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in the Aggregator module in Drupal 6.x before 6.23 and 7.x before 7.11 allows remote attackers to hijack the authentication of unspecified victims for requests that update feeds and possibly cause a denial of service (loss of updates due to rate limit) via unspecified vectors.

← Browse all CVEs View on cve.org ↗