Vulnerability Details : CVE-2015-4364
Multiple cross-site request forgery (CSRF) vulnerabilities in includes/campaignmonitor_lists.admin.inc in the Campaign Monitor module 7.x-1.0 for Drupal allow remote attackers to hijack the authentication of users for requests that (1) enable list subscriptions via a request to admin/config/services/campaignmonitor/lists/%/enable or (2) disable list subscriptions via a request to admin/config/services/campaignmonitor/lists/%/disable.
Publish Date : 2015-06-15 Last Update Date : 2015-06-15
- CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-4364
- References For CVE-2015-4364
- Metasploit Modules Related To CVE-2015-4364
There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information)