CVE-2015-3356

Name of the Vulnerable Software and Affected Versions Tadaa! module versions prior to 7.x-1.4

Description The issue allows remote attackers to hijack the authentication of arbitrary users for requests, including enabling or disabling modules and changing variables.

Recommendations For versions prior to 7.x-1.4, update to version 7.x-1.4 or later to resolve the issue.