cpe:/a:tomatocms:tomatocms:2.0.6 CVE-2010-2282 2010-06-15T10:30:01.767-04:00 2010-06-17T00:00:00.000-04:00 5.1 NETWORK HIGH NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-06-16T10:17:00.000-04:00 SECUNIA 39680 MISC http://holisticinfosec.org/content/view/148/45/ Cross-site request forgery (CSRF) vulnerability in TomatoCMS 2.0.6 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password.