Francois Jacquet RosarioSIS v12.0.0 was discovered to contain a content spoofing vulnerability in the Theme configuration under the My Preferences module. This vulnerability allows attackers to manipulate application settings.
This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.