Description
Multiple cross-site request forgery (CSRF) vulnerabilities in forms in Drupal 6.x before 6.4 allow remote attackers to perform unspecified actions via unknown vectors, related to improper token validation for (1) cached forms and (2) forms with AHAH elements.
Remediation
References
Related Vulnerabilities
Apache Traffic Server Integer Overflow or Wraparound Vulnerability (CVE-2018-9481)
Oracle JRE CVE-2012-5088 Vulnerability (CVE-2012-5088)
WordPress Plugin Resim Ara Cross-Site Scripting (3.0)
WordPress Plugin WooCommerce Unspecified Vulnerability (4.2.0)
WordPress Plugin Quick Event Manager Security Bypass (9.2.16)