CVE-2015-7233 in OSF Module
Summary
Cross-site request forgery (CSRF) vulnerability in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Import module is enabled, allows remote attackers to hijack the authentication of administrators for requests that create new OSF datasets via unspecified vectors.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Reservation
09/17/2015
Disclosure
09/17/2015
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 77748 | OSF Module OSF Import cross-site request forgery | 352 | Not defined | Official fix | CVE-2015-7233 |