Drupal CiviCRM private report module cross-site request forgery vulnerability
Drupal is a free and open source content management system developed in PHP. A cross-site request forgery vulnerability exists in Drupal CiviCRM private report, which allows remote attackers to construct malicious URIs, trick users into parsing them, and can target user contexts to perform...