Security Advisory
CVE-2012-4053
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Cross-site request forgery (CSRF) vulnerability in eZOE flash player in eZ Publish 4.1 through 4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.