Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Drupal | Automated Logout | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Drupal | Automated Logout | 100% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
Tracking
Sign in to view the affected projects.
No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
| Link | Providers |
|---|---|
| https://www.drupal.org/sa-contrib-2026-030 |
|
Fri, 27 Mar 2026 08:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Drupal
Drupal automated Logout |
|
| Vendors & Products |
Drupal
Drupal automated Logout |
Thu, 26 Mar 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Cross-Site Request Forgery (CSRF) vulnerability in Drupal Automated Logout allows Cross Site Request Forgery.This issue affects Automated Logout: from 0.0.0 before 1.7.0, from 2.0.0 before 2.0.2. | |
| Title | Automated Logout - Moderately critical - Cross-site request forgery - SA-CONTRIB-2026-030 | |
| Weaknesses | CWE-352 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: drupal
Published:
Updated: 2026-03-26T20:10:40.090Z
Reserved: 2026-03-18T15:21:32.561Z
Link: CVE-2026-4393
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-03-26T21:17:10.220
Modified: 2026-03-26T21:17:10.220
Link: CVE-2026-4393
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-03-27T08:32:07Z