CVE-2010-3883

Publication date

2010-10-08 20:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in the Change Group Permissions module in CMS Made Simple 1.7.1 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that make permission modifications.