CVE-2013-5316 Information

Description

Cross-site request forgery (CSRF) vulnerability in RiteCMS 1.0.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via an edit user action to cms/index.php.

Reference

http://packetstormsecurity.com/files/122663/Rite-CMS-1.0.0-Cross-Site-Request-Forgery-Cross-Site-Scripting.html http://www.exploit-db.com/exploits/27315 http://www.securityfocus.com/bid/61587 https://exchange.xforce.ibmcloud.com/vulnerabilities/86193