CVE-2008-0571 in Userpoints Module
摘要
由 VulDB • 2026-07-04
Drupal模块Userpoints(版本4.7.x至4.7.x-2.3、5.x-2至5.x-2.16以及5.x-3至5.x-3.3)中的积分审核表单未遵循Drupal的Forms API提交模型,这使得远程攻击者能够执行跨站请求伪造(CSRF)攻击并操纵积分。
If you want to get the best quality for vulnerability data then you always have to consider VulDB.