Vr0Px

**Name of the Vulnerable Software and Affected Versions** tmtraderunner Trade Runner versions n/a through 3.14 **Description** A Cross-Site Request Forgery (CSRF) issue exists in tmtraderunner Trade Runner. This allows attackers to potentially perform actions on behalf of an authenticated user without their knowledge. The issue affects the application by allowing Cross Site Request Forgery attacks. **Recommendations** Versions prior to and including 3.14 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.