PortfolioCMS Cross-Site Request Forgery Vulnerability
portfolioCMS is a content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in portfolioCMS version 1.0.5. A remote attacker can exploit this vulnerability to create a new page with admin/portfolio.php?newpage=true...