Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2008-0571 (Userpoints Module)
BugsAlert Home > CVE-2008-0571 (Userpoints Module)
 
 

The point moderation form in the Userpoints 4.7.x before 4.7.x-2.3, 5.x-2 before 5.x-2.16, and 5.x-3 before 5.x-3.3 module for Drupal does not follow Drupal's Forms API submission model, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and manipulate points.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0571

Learn more about CVE-2008-0571 (Userpoints Module)
 
Tags: cve-2008-0571 userpoints module

Related Items
      VU#854769:PhotoChannel Networks Photo Upload Plugin ActiveX control stack buffer overflows

      FrSIRT - Fedora Security Update Fixes Seamonkey Multiple Vulnerabilities

      extract($foo) crashes if $foo['foo'] exists

      Bugtraq: MyBB 1.4.3 my_post_key Disclosure Vulnerability

      FrSIRT - Redhat Security Update Fixes Java Multiple Code Execution Issues

      Online Scanner Top Twenty for November 2007

      FrSIRT - Shahrood "id" Parameter Handling Remote SQL Injection Vulnerability

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel