Drupal: >> Feature Module Security Vulnerabilities
Feature 4.7.x-dev and 5.x-dev before 20071206, a Drupal module, does not follow Drupal's Forms API submission model, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks.
CVSS Score
4.3
EPSS Score
0.002
Published
2007-12-12