Multiple cross-site request forgery (CSRF) vulnerabilities in the Feature Set module for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) enable or (2) disable a module via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
feature_set | eq | <= 7.x1.0beta1 |