Drupal Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2007-5594
Reference:
CVE-2007-5594
Title:
Drupal Cross-Site Request Forgery (CSRF) Vulnerability
Overview:
Drupal 5.x before 5.3 does not apply its Drupal Forms API protection against the user deletion form which allows remote attackers to delete users via a cross-site request forgery (CSRF) attack.