Drupal Addressbook 6.x XSS / CSRF / SQL Injection
https://packetstormsecurity.com/files/112415/DRUPAL-SA-CONTRIB-2012-069.txt
https://packetstormsecurity.com/files/112415/DRUPAL-SA-CONTRIB-2012-069.txthttps://packetstormsecurity.com/files/112415/Drupal-Addressbook-6.x-XSS-CSRF-SQL-Injection.htmlWed, 02 May 2012 21:28:43 GMTDrupal Addressbook third party module version 6.x suffers from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.