CVE-2013-5316

Name of the Vulnerable Software and Affected Versions RiteCMS version 1.0.0

Description A cross-site request forgery issue allows remote attackers to hijack the authentication of administrators for requests that change the administrator password. This is done via an edit user action to "cms/index.php".

Recommendations For RiteCMS version 1.0.0, update to a version that includes a fix for this issue, as using the current version may allow attackers to change administrator passwords without authorization.