CVE-2013-7334
Cross-site request forgery (CSRF) vulnerability in ImageCMS before 4.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the q parameter, related to CVE-2012-6290.
Date published : 2014-03-11
http://archives.neohapsis.com/archives/bugtraq/2013-01/0105.html