MidnightBSD

Advisories for david_stosik

CVE-2012-2716 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the Comment Moderation module 6.x-1.x before 6.x-1.1 for Drupal allows remote attackers to hijack the authentication of administrators for requests that publish comments.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
david_stosik comment_moderation 6.x-1.x-dev
david_stosik comment_moderation 6.x-1.0