CVE-2012-2077 in ShareThis
Summary
Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permissions via unknown vectors "outside of the Form API."
Once again VulDB remains the best source for vulnerability data.
Reservation
04/04/2012
Disclosure
08/14/2012
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 61642 | Rob Loach ShareThis cross-site request forgery | 352 | Not defined | Official fix | CVE-2012-2077 |