2 matches found
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the Database Administration dba module 4.6.x-, and before 4.7.x-1.2 in the 4.7.x-1. series, for Drupal allow remote attackers to perform unauthorized actions as an arbitrary user, a related issue to CVE-2006-5476...
CVE-2006-5476
Drupal CSRF vulnerability CVE-2006-5476 affects Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4, allowing remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors. Root cause: CSRF in the core functionality. Impact: unauthorized actions as another user. Reme...