CSRF Vulnerability in Spider Contacts Module for Drupal Allows Unauthorized Deletion of Contact Categories

CSRF Vulnerability in Spider Contacts Module for Drupal Allows Unauthorized Deletion of Contact Categories

CVE-2015-4349 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in the Spider Contacts module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete contact categories via unspecified vectors.

Learn more about our Contact.