Drupal Core 5.x Multiple Cross-Site Request Forgery Vulnerabilities (5.0 - 5.1)
Description
Drupal Core is prone to multiple cross-site request forgery vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. Drupal Core versions 5.x ranging from 5.0 and up to and including 5.1 are vulnerable.
Remediation
Update to Drupal Core version 5.2 or latest