Structured Dynamics » Open Semantic Framework : Security Vulnerabilities, CVEs, Published In 2015 (CSRF)
Cross-site request forgery (CSRF) vulnerability in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Import module is enabled, allows remote attackers to hijack the authentication of administrators for requests that create new OSF datasets via unspecified vectors.
Max CVSS
5.1
EPSS Score
0.08%
Published
2015-09-17
Updated
2015-09-18
1 vulnerabilities found