CVE-2012-2061

2012-09-1720:00:00

redhat

www.cve.org

AI Score

7.1

Confidence

Low

EPSS

0.002

Percentile

52.7%

JSON

Cross-site request forgery (CSRF) vulnerability in the Admin tools module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors involving “not checking tokens.”

References

drupal.org/node/1482126

www.openwall.com/lists/oss-security/2012/04/07/1

www.securityfocus.com/bid/52502

exchange.xforce.ibmcloud.com/vulnerabilities/74058