Msvod v10 has a CSRF vulnerability to change user information via the admin/member/edit.html URI.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-352,
Products Affected