RSS   Vulnerabilities for 'Admintools'   RSS

2012-09-17
 
CVE-2012-2061

 

 
Cross-site request forgery (CSRF) vulnerability in the Admin tools module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors involving "not checking tokens."

 
 
CVE-2012-2060

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the Admin tools module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 


Copyright 2017, cxsecurity.com

 

Back to Top