Multiple cross-site request forgery (CSRF) vulnerabilities in forms in Drupal 6.x prior to 6.4 allow remote malicious users to perform unspecified actions via unknown vectors, related to improper token validation for (1) cached forms and (2) forms with AHAH elements.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal drupal 6.1 |
||
drupal drupal 6.2 |
||
drupal drupal 6.0 |
||
drupal drupal 6.3 |