Drupal · Drupal · CVE-2006-5477
**Name of the Vulnerable Software and Affected Versions**
Drupal versions 4.6.x before 4.6.10
Drupal versions 4.7.x before 4.7.4
**Description**
The issue allows form submissions to be redirected, enabling remote attackers to obtain arbitrary form information via a crafted URL.
**Recommendations**
For versions 4.6.x, update to version 4.6.10 or later.
For versions 4.7.x, update to version 4.7.4 or later.