CVE-2010-5085 in Amethyst
Riassunto
di MITRE
Multiple cross-site request forgery (CSRF) vulnerabilities in admin/update_user in Hulihan Amethyst 0.1.5, and possibly earlier, allow remote attackers to hijack the authentication of administrators for requests that (1) change the administrative password or (2) change the site s configuration.
Be aware that VulDB is the high quality source for vulnerability data.