CVE-2009-4905

Publication date

2010-06-25 19:00:00

Family

mitre

State

PUBLISHED

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in index.php in Acc Statistics 1.1 allow remote attackers to hijack the authentication of administrators for requests that change (1) passwords, (2) usernames, and (3) e-mail addresses.