CVE-2014-9502

Publication date

2018-02-01 17:00:00

Family

mitre

State

PUBLISHED

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified sub modules in the Open Atrium module 7.x-2.x before 7.x-2.26 for Drupal allow remote attackers to hijack the authentication of unknown victims via vectors related to menu callbacks.