Skip to main content

Civicrm Private Report

1 CVEs product

Monthly

CVE-2015-4391 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the CiviCRM private report module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentication. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

CSRF Civicrm Private Report
NVD
CVSS 2.0
6.8
EPSS
0.2%
EPSS 0% CVSS 6.8
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the CiviCRM private report module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to hijack the authentication. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

CSRF Civicrm Private Report
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy