CVE-2012-1203

Publication date

2014-12-28 00:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in starnet/index.php in SyndeoCMS 3.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add user accounts via a save_user action.