Vulnerabilities > CVE-2007-2160 - Cross-Site Request Forgery vulnerability in Drupal Database Administration Module 4.6/4.7
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple cross-site request forgery (CSRF) vulnerabilities in the Database Administration (dba) module 4.6.x-*, and before 4.7.x-1.2 in the 4.7.x-1.* series, for Drupal allow remote attackers to perform unauthorized actions as an arbitrary user, a related issue to CVE-2006-5476.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |