CVE-2010-1611
CVE-2010-1611 : In AlegroCart 1.1, a cross-site request forgery (CSRF) vulnerability could allow remote attackers to hijack the administrator’s session and reset the administrator password via a POST to the admin/ endpoint with an update action. The provided documents confirm the affected product...