CVE-2004-2403

2004-12-31T05:00:00
ID CVE-2004-2403
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:31:00

Description

Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote attackers to perform unauthorized actions as the administrative user via a link or IMG tag to YaBB.pl that specifies the desired action, id, and moda parameters.