cpe:/a:rob_loach:sharethis:7.x-2.0 cpe:/a:rob_loach:sharethis:7.x-2.0:dev cpe:/a:rob_loach:sharethis:7.x-2.1 cpe:/a:rob_loach:sharethis:7.x-2.2 CVE-2012-2077 2012-08-14T19:55:01.660-04:00 2017-08-28T21:31:29.210-04:00 5.1 NETWORK HIGH NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2012-08-15T17:21:00.000-04:00 SECUNIA 48598 BID 52778 OSVDB 80681 MLIST [oss-security] 20120406 CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments) XF drupal-sharethis-administrationforms-csrf(74518) CONFIRM http://drupal.org/node/1504746 MISC http://drupal.org/node/1506448 CONFIRM http://drupalcode.org/project/sharethis.git/commit/11f247a Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permissions via unknown vectors "outside of the Form API."