A vulnerability was found in valtech IDP Test Client and classified as problematic. Affected by this issue is some unknown functionality of the file python-flask/main.py. The manipulation leads to cross-site request forgery. Using CWE to declare the problem leads to CWE-352. The weakness was presented 12/31/2022 as f1e7b3d431c8681ec46445557125890c14fa295f. The advisory is shared for download at github.com. This vulnerability is handled as CVE-2014-125028. The attack may be launched remotely. Technical details are available. There is no exploit available. The current price for an exploit might be approx. USD $0-$5k at the moment. It is declared as not defined. As 0-day the estimated underground price was around $0-$5k. The name of the patch is f1e7b3d431c8681ec46445557125890c14fa295f. The bugfix is ready for download at github.com. It is recommended to apply a patch to fix this issue. A possible mitigation has been published before and not just after the disclosure of the vulnerability.