Description

Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors.

Remediation

References

CVE-2006-5476

Related Vulnerabilities

WordPress Plugin Dharma booking Local/Remote File Inclusion (2.38.3)

Phusion Passenger Other Vulnerability (CVE-2014-1832)

Moodle Other Vulnerability (CVE-2006-4941)

Joomla! Core Remote Code Execution (1.5.0 - 3.4.5)

PostgreSQL Improper Access Control Vulnerability (CVE-2019-10127)

Severity

High

Classification

CVE-2006-5476

Tags

Missing Update Known Vulnerabilities