Alexey Sukhotin : Security Vulnerabilities, CVEs, Published In 2013 (XSS)
Cross-site request forgery (CSRF) vulnerability in the elFinder file manager module 6.x-0.x before 6.x-0.8 and 7.x-0.x before 7.x-0.8 for Drupal allows remote attackers to hijack the authentication of unspecified victims to create, modify, or delete files via unknown vectors.
Max CVSS
4.3
EPSS Score
0.47%
Published
2013-06-24
Updated
2017-08-29
1 vulnerabilities found