Vulnerability CVE-2012-3799

Vulnerability CVE-2012-3799

Published: 2012-06-26 Modified: 2012-06-27

Description:

	Topic	Author	Date
Low	Drupal Maestro 7.x Cross Site Scripting / Cross Site Request Forgery	Steve Persch	08.06.2012

Type:

(Cross-Site Request Forgery (CSRF))

CVSS Base Score	Impact Subscore	Exploitability Subscore
5.1/10	6.4/10	4.9/10

Affected software
Blaine lang -> Maestro

http://drupalcode.org/project/maestro.git/commitdiff/c499971

http://drupal.org/node/1619830

http://drupal.org/node/1617952

http://xforce.iss.net/xforce/xfdb/76146

http://www.securityfocus.com/bid/53836

http://www.osvdb.org/82714

http://www.openwall.com/lists/oss-security/2012/06/14/3

http://secunia.com/advisories/49393