Apache Tomcat CVE-2012-4431 Cross-Site Request Forgery Vulnerability
Apache Tomcat is prone to a cross-site request forgery vulnerability.
Exploiting this issue may allow a remote attacker to perform certain actions in the context of an authorized user and gain access to the affected application; other attacks are also possible.
The following versions are vulnerable:
Tomcat 7.0.0 through 7.0.31
Tomcat 6.0.0 through 6.0.35