CVE-2007-1185
The (1) Search, (2) Edit Profile, (3) Recommend, and (4) User Approval forms in WebAPP before 0.9.9.5 use hidden inputs, which has unknown impact and remote attack vectors.
Date published : 2007-02-28
http://www.securityfocus.com/bid/22563
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250