CVE-2012-0826
Publication date 28 October 2013
Last updated 24 July 2024
Ubuntu priority
Cross-site request forgery (CSRF) vulnerability in the Aggregator module in Drupal 6.x before 6.23 and 7.x before 7.11 allows remote attackers to hijack the authentication of unspecified victims for requests that update feeds and possibly cause a denial of service (loss of updates due to rate limit) via unspecified vectors.
Status
Package | Ubuntu Release | Status |
---|---|---|
drupal6 | ||
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |
drupal7 | ||
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty |
Not affected
|
|