Description

Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors.

Remediation

References

CVE-2006-5476

Related Vulnerabilities

WordPress Plugin MailChimp Forms by MailMunch Unspecified Vulnerability (2.0.6.3)

WordPress Plugin Spot.IM Comments Cross-Site Scripting (4.0.3)

Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-10234)

WordPress Plugin Supafolio Multiple Unspecified Vulnerabilities (2.1.0)

WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (2.0.5)

Severity

High

Classification

CVE-2006-5476

Tags

Missing Update Known Vulnerabilities