CVE-2011-0642
N-13 News CSRF vulnerability (CVE-2011-0642) affects news/admin.php in N-13 News versions 3.4, 3.7, and 4.0. The issue allows an attacker to hijack administrator sessions by forging requests that create new users via the options action. Documented impact is loss of integrity/privilege control for...