CSRF Vulnerability in GD Infinite Scroll Module for Drupal

CSRF Vulnerability in GD Infinite Scroll Module for Drupal

CVE-2015-1568 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in the GD Infinite Scroll module before 7.x-1.4 for Drupal allows remote attackers to hijack the authentication of users with the "edit gd infinite scroll settings" permission for requests that delete settings via unspecified vectors.

Learn more about our User Device Pen Test.