[MEDIUM] Craft CMS subject to URL forgery

PKSA-2z2h-k3wy-w25s CVE-2017-8385 GHSA-j27g-r58q-624w

Affected package: craftcms/cms

Affected version: <2.6.2976

Reported by:
GitHub