Vulnerabilities > Htaccess Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-04-21 | CVE-2015-3349 | Cross-Site Request Forgery (CSRF) vulnerability in Htaccess Project Htaccess Multiple cross-site request forgery (CSRF) vulnerabilities in the Htaccess module before 7.x-2.3 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1) deploy or (2) delete an .htaccess file via unspecified vectors. | 6.8 |