Month Of Abysssec Undisclosed Bugs – VWD-CMS version 2.1 suffers from a cross site request forgery vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/94024/moaub20-vwdcms.pdf
Source: https://packetstormsecurity.com/files/94024/Month-Of-Abysssec-Undisclosed-Bugs-VWD-CMS-2.1.html