CSRF Vulnerability in Spider Video Player Module for Drupal Allows Unauthorized Video Deletion

CVE-2015-4352 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:P

Cross-site request forgery (CSRF) vulnerability in the Spider Video Player module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete videos via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.