cpe:/a:extplorer:extplorer:2.1.0:rc3 CVE-2012-3362 2012-07-12T16:55:16.047-04:00 2012-07-26T23:40:39.460-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2012-07-13T12:03:00.000-04:00 DEBIAN DSA-2510 MLIST [oss-security] 20120624 CVE request: CSRF in eXtplorer MLIST [oss-security] 20120624 Re: CVE request: CSRF in eXtplorer MLIST [oss-security] 20120626 Re: CVE request: CSRF in eXtplorer MLIST [oss-security] 20120627 Re: CVE request: CSRF in eXtplorer MISC http://www.autosectools.com/Advisories/eXtplorer.2.1.RC3_Cross-site.Request.Forgery_174.html Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 and earlier allows remote attackers to hijack the authentication of administrators for requests that add an administrator account via an adduser admin action.