Description

Cross-site request forgery (CSRF) vulnerability in the aggregator module in Drupal 4.7.x before 4.7.11 and 5.x before 5.6 allows remote attackers to delete items from a feed as privileged users.

Remediation

References

CVE-2008-0272

Related Vulnerabilities

WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.4)

WordPress Plugin Email Encoder-Protect Email Addresses Cross-Site Scripting (2.1.1)

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2003-0222)

OpenSSL Integer Overflow or Wraparound Vulnerability (CVE-2021-23840)

WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages Unspecified Vulnerability (1.4.1)

Severity

Medium

Classification

CVE-2008-0272 CWE-352

Tags

Missing Update Known Vulnerabilities