CVE-2015-5508

Name of the Vulnerable Software and Affected Versions eXtensible Catalog (XC) Drupal Toolkit (affected versions not specified)

Description A cross-site request forgery (CSRF) issue exists in the XC NCIP Provider module, allowing remote attackers to hijack the authentication of users with the administer ncip providers permission. This can occur through crafted requests that alter NCIP providers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.