3 matches found
CVE-2013-5316
Cross-site request forgery CSRF vulnerability in RiteCMS 1.0.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via an edit user action to cms/index.php...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in RiteCMS 1.0.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via an edit user action to cms/index.php...
CVE-2013-5316
The CVE-2013-5316 entry describes a CSRF vulnerability in RiteCMS 1.0.0 that lets an attacker hijack administrator sessions to perform password changes via an admin action to cms/index.php. The affected component is the RiteCMS 1.0.0 admin password change flow; root cause is inadequate CSRF prote...