Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in the Localization client 5.x before 5.x-1.1 and 6.x before 6.x-1.6 and the Localization server 5.x before 5.x-1.0-alpha5 and 6.x before 6.x-alpha2, modules for Drupal, allows remote attackers to perform unauthorized actions as administrators via unspecified vectors related to the "local translation submission interface."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
drupal localization_server 跨站请求伪造漏洞
Vulnerability Description
Drupal是一个开放源码的内容管理平台。 Drupal的定位客户端模块5.x-1.1之前的版本5.x和6.x-1.6之前的版本6.x以及定位服务器5.x-1.0-alpha5之前的版本5.x和6.x-alpha2之前的版本6.x中存在跨站请求伪造漏洞。远程攻击者可以借助与"本地翻译本地提交界面"有关的未明向量,仿效管理员执行未授权操作。
CVSS Information
N/A
Vulnerability Type
N/A