Fiverr · Fiverrscript · CVE-2015-4677
**Name of the Vulnerable Software and Affected Versions**
FiverrScript version 7.2
**Description**
A cross-site request forgery issue allows remote attackers to hijack administrator authentication for requests that create a new admin via a request to "administrator/admins create.php".
**Recommendations**
For FiverrScript version 7.2, update to a version that includes a fix for this issue to prevent exploitation.