CVE-2008-7151

EUVD-2008-7110
Cross-site request forgery (CSRF) vulnerability in Live 5.x before 5.x-0.1, a module for Drupal, allows remote attackers to hijack the authentication of unspecified privileged users for requests that can be leveraged to execute arbitrary PHP code.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 26%
Affected Products (NVD)
VendorProductVersion
gurpartap_singhlive
5.x-1.x-dev:x
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://drupal.org/node/236607
http://drupal.org/node/236609
https://exchange.xforce.ibmcloud.com/vulnerabilities/41754
http://drupal.org/node/236607
http://drupal.org/node/236609
https://exchange.xforce.ibmcloud.com/vulnerabilities/41754