Cross-site request forgery (CSRF) vulnerability in SetucoCMS.