A Cross-site Request Forgery (CSRF) vulnerability exists in Advanced Electron Forums (AEF) through 1.0.9 due to inadequate confirmation for sensitive transactions in the administrator functions.
Software | From | Fixed in |
---|---|---|
anelectron / advanced_electron_forums | - | 1.0.9.x |