Multiple cross-site request forgery (CSRF) vulnerabilities in admin/agenteditor.php in Free Realty 3.1-0.6 allow remote malicious users to hijack the authentication of administrators for requests that (1) add an agent via an addagent action or (2) modify an agent.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rwcinc free realty 3.1-0.6 |