Cross-site request forgery (CSRF) vulnerability in eXtplorer before 2.1.8 allows remote attackers to hijack the authentication of arbitrary users for requests that execute PHP code.Referenceshttp://extplorer.net/news/18http://jvndb.jvn.jp/jvndb/JVNDB-2015-000126http://jvn.jp/en/jp/JVN92520335/index.html
