Description

Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows form submissions to be redirected, which allows remote attackers to obtain arbitrary form information via a crafted URL.

Remediation

References

CVE-2006-5477

Related Vulnerabilities

WordPress Plugin XEN Carousel Multiple Cross-Site Scripting Vulnerabilities (0.12.2)

Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-1675)

MySQL CVE-2018-3064 Vulnerability (CVE-2018-3064)

WordPress Plugin Smart Flv 'jwplayer.swf' Multiple Cross-Site Scripting Vulnerabilities (1.0)

PHP Numeric Errors Vulnerability (CVE-2010-4699)

Severity

Low

Classification

CVE-2006-5477

Tags

Missing Update Known Vulnerabilities