Cross-site request forgery (CSRF) vulnerability in SAMEDIA LandShop 0.9.2 allows remote attackers to hijack the authentication of administrators for requests that change account settings.
http://www.exploit-db.com/exploits/18687
http://vulnerability-lab.com/get_content.php?id=485