Shodan
Vulnerabilities
Vulnerable Software
Paul Beaney:  >> Phplist  >> 5.x-1.1  Security Vulnerabilities
CVE-2009-4066
Multiple cross-site request forgery (CSRF) vulnerabilities in the "My Account" feature in PHPList Integration module 5 before 5.x-1.2 and 6 before 6.x-1.1 for Drupal allow remote attackers to hijack the authentication of arbitrary users via vectors related to (1) subscribing or (2) unsubscribing to mailing lists.
CVSS Score
6.8
EPSS Score
0.002
Published
2009-11-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved