CVE-2012-6631

Name of the Vulnerable Software and Affected Versions Vessio NetBill version 1.2

Description A cross-site request forgery (CSRF) issue exists, allowing remote attackers to hijack the authentication of administrators for requests that add accounts via a new-client action. This occurs in the accounts/admin/index.php file.

Recommendations For Vessio NetBill version 1.2, consider implementing CSRF protection mechanisms, such as token-based validation, to prevent unauthorized requests. As a temporary workaround, restrict access to the accounts/admin/index.php file to minimize the risk of exploitation.