Adobe Experience Manager versions 6.2 and previous versions have a vulnerability that could be used in Cross-Site Request Forgery attacks.
adobe experience manager