Htaccess Project : Security Vulnerabilities, CVEs,
Multiple cross-site request forgery (CSRF) vulnerabilities in the Htaccess module before 7.x-2.3 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) deploy or (2) delete an .htaccess file via unspecified vectors.
Max CVSS
6.8
EPSS Score
0.16%
Published
2015-04-21
Updated
2016-12-06
1 vulnerabilities found