Description
Multiple cross-site request forgery (CSRF) vulnerabilities in forms in Drupal 6.x before 6.4 allow remote attackers to perform unspecified actions via unknown vectors, related to improper token validation for (1) cached forms and (2) forms with AHAH elements.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-Matomo (WP-Piwik) Cross-Site Scripting (1.0.10)
Oracle Application Server CVE-2008-5438 Vulnerability (CVE-2008-5438)
Claroline Other Vulnerability (CVE-2005-1375)
WordPress Plugin Analyticator Multiple Cross-Site Scripting Vulnerabilities (6.4.9.5)
ownCloud Improper Access Control Vulnerability (CVE-2016-9467)