A cross-site request forgery (CSRF) vulnerability continues to be present in Magmi plugin for Magento online stores, despite developers receiving a report from researchers that discovered it. […]
Click here for original story, Magento plugin Magmi vulnerable to hijacking admin sessions
Source: Bleeping Computer