Security Advisory

CVE-2012-1633

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-09-20 00:00:00

Last updated 2024-08-06 19:01:02

Assigner redhat

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in the Password Policy module before 6.x-1.4 and 7.x-1.0 beta3 for Drupal allows remote attackers to hijack the authentication of administrative users for requests that unblock a user.

← Browse all CVEs View on cve.org ↗