CVE-2009-4517

Metadata

CVE-2009-4517
6.8
drupal.org, vupen.com
2009-12-31
2017-06-06 20:22

Description

Cross-site request forgery (CSRF) vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users for requests that access unpublished content.

Related Vulnerabilities