CVE-2012-4568 on Ubuntu 16.04 LTS (xenial) - medium.
Description:
Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.