Description

Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors.

Remediation

References

CVE-2006-5476

Related Vulnerabilities

Microsoft SQL Server Remote Code Execution Vulnerability (CVE-2019-1068)

WordPress Improper Input Validation Vulnerability (CVE-2016-9263)

WordPress Plugin Mail Masta Multiple SQL Injection Vulnerabilities (1.0)

WordPress 6.1.x Cross-Site Scripting (6.1 - 6.1.5)

WordPress Plugin Viper's Video Quicktags Unspecified Vulnerability (6.4.4)

Severity

High

Classification

CVE-2006-5476

Tags

Missing Update Known Vulnerabilities