CVE-2012-1220
CVE-2012-1220 describes a CSRF vulnerability in GAzie 5.20 and earlier, affecting the modules/config/admin_utente.php component. The flaw allows an attacker to hijack the administrator’s authenticated session by issuing requests that change account information via an update action, demonstrated b...