CVE-2007-5594 in Drupal
सारांश
द्वारा VulDB • 06/07/2026
Drupal 5.x versions prior to 5.3 do not enforce their Drupal Forms API protections on the user deletion form, allowing remote attackers to delete users through a Cross-Site Request Forgery (CSRF) attack.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.