VYPR
Unrated severityNVD Advisory· Published Aug 27, 2008· Updated Jun 16, 2026

CVE-2008-3743

CVE-2008-3743

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in forms in Drupal 6.x before 6.4 allow remote attackers to perform unspecified actions via unknown vectors, related to improper token validation for (1) cached forms and (2) forms with AHAH elements.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Drupal/Drupal5 versions
    cpe:2.3:a:drupal:drupal:6.0:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:drupal:drupal:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:drupal:drupal:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:drupal:drupal:6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:drupal:drupal:6.3:*:*:*:*:*:*:*
    • (no CPE)range: <6.4

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.