Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5549

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2012-5549
Last Modified 04 Dec 2012 01:38:20
Published 03 Dec 2012 04:55:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5549

Summary

Cross-site request forgery (CSRF) vulnerability in the Time Spent module 6.x and 7.x for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

Vulnerable Systems

Application

  • Carlos Carvalhar Time Spent 6.x-2.x

  • Carlos Carvalhar Time Spent 7.x-2.x


References

MLIST - [oss-security] 20121120 Re: CVE Request for Drupal Contributed Modules

MISC - http://drupal.org/node/1822066


Last Updated: 27 May 2016 11:01:25