Description
Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows form submissions to be redirected, which allows remote attackers to obtain arbitrary form information via a crafted URL.
Remediation
References
Related Vulnerabilities
WordPress Plugin WPML (WordPress Multilingual) Cross-Site Request Forgery (4.3.6)
WordPress Plugin Zita Elementor Site Library Arbitrary File Upload (1.6.1)
Apache HTTP Server Other Vulnerability (CVE-2001-1342)
WordPress Plugin Gallery from files Multiple Vulnerabilities (1.60)
WordPress Plugin Dynamic Widgets 'id' Parameter Cross-Site Scripting (1.5.1)