CVE-2010-2282 Information

Description

Cross-site request forgery (CSRF) vulnerability in TomatoCMS 2.0.6 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password.

Reference

http://holisticinfosec.org/content/view/148/45/ http://secunia.com/advisories/39680