Drupal Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2008-3743 - Vulnerability Database

Drupal Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2008-3743

Medium

Reference: CVE-2008-3743

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-3743

Title: Drupal Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Multiple cross-site request forgery (CSRF) vulnerabilities in forms in Drupal 6.x before 6.4 allow remote attackers to perform unspecified actions via unknown vectors related to improper token validation for (1) cached forms and (2) forms with AHAH elements.