Vulnerability Details CVE-2012-2061
Cross-site request forgery (CSRF) vulnerability in the Admin tools module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors involving "not checking tokens."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.3%
CVSS Severity
CVSS v2 Score 6.8
References
- http://drupal.org/node/1482126
- http://www.openwall.com/lists/oss-security/2012/04/07/1
- http://www.securityfocus.com/bid/52502
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74058
- http://drupal.org/node/1482126
- http://www.openwall.com/lists/oss-security/2012/04/07/1
- http://www.securityfocus.com/bid/52502
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74058
Products affected by CVE-2012-2061
-
cpe:2.3:a:drupal:drupal:-
-
cpe:2.3:a:nijskens_raf:admintools:-