Secunia Security Advisory - Two vulnerabilities have been reported in the Password Policy module for Drupal, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.
5c803eb31cc3c3979ba80f9def1788481878043abb9143e92c1279a969542900