CVE-2015-3370

Name of the Vulnerable Software and Affected Versions Drupal Node Invite module versions prior to 6.x-2.5

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of users with the node invite can manage invite permission for requests that re-enable node invitations.

Recommendations For versions prior to 6.x-2.5, update to version 6.x-2.5 or later to resolve the issue.