Some vulnerabilities have been reported in WebGUI, which can be exploited by malicious people to conduct cross-site request forgery attacks.
The vulnerabilities are caused due to the application allowing users to perform certain unspecified actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited when e.g. a logged-in administrator visits a specially crafted web page.
Solution: Fixed in version 7.7.14 (beta).
Provided and/or discovered by: Reported by the vendor.
Original Advisory: http://sourceforge.net/project/shownotes.php?release_id=695900
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org