Cross-site request forgery (CSRF) vulnerability in management/prioritize_planning.php in SimpleRisk prior to 20130916-001 allows remote malicious users to hijack the authentication of users for requests that add projects via an add_project action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simplerisk simplerisk |