Description

Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors.

Remediation

References

CVE-2006-5476

Related Vulnerabilities

WordPress Plugin Multi Step Form Multiple Cross-Site Scripting Vulnerabilities (1.2.5)

MySQL CVE-2020-2580 Vulnerability (CVE-2020-2580)

Grafana Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-19039)

Moodle CVE-2019-3852 Vulnerability (CVE-2019-3852)

WordPress Plugin iframe Cross-Site Scripting (3.0)

Severity

High

Classification

CVE-2006-5476

Tags

Missing Update Known Vulnerabilities