Description
Cross-site request forgery (CSRF) vulnerability in admin.php in Collabtive 0.6.5 allows remote attackers to hijack the authentication of administrators for requests that add administrative users via the edituser action.
Remediation
References
Related Vulnerabilities
WordPress Plugin JW Player 6 Cross-Site Scripting (2.1.14)
Microsoft SQL Server Other Vulnerability (CVE-2002-1138)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4286)
MySQL CVE-2016-0503 Vulnerability (CVE-2016-0503)
WordPress Same Origin Method Execution (SOME) Vulnerability (0.70 - 3.7.13)