Description
Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows form submissions to be redirected, which allows remote attackers to obtain arbitrary form information via a crafted URL.
Remediation
References
Related Vulnerabilities
WordPress Plugin Broken Link Checker Multiple Cross-Site Scripting Vulnerabilities (1.9.1)
WordPress Plugin Ad Invalid Click Protector (AICP) Malicious Code (1.2.9)
WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.17)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4285)