CVE-2006-5476

Cross-site request forgery (CSRF) vulnerability in Drupal 4.6.x before 4.6.10 and 4.7.x before 4.7.4 allows remote attackers to perform unauthorized actions as an arbitrary user via unspecified vectors.

Date published : 2006-10-24

http://www.securityfocus.com/archive/1/449199/100/0/threaded

http://drupal.org/node/88828