Galette is an open source membership management web application for nonprofit organizations.Galette is vulnerable to a cross-site request forgery vulnerability that stems from the failure of Galette version 0.9.6 and earlier to check for cross-site request forgery attacks. No details of the vulnerability are currently available.