CVE-2012-0829
CVE-2012-0829 applies to Mibew Messenger 1.6.4 and earlier. The issue is multiple CSRF vulnerabilities that allow remote attackers to hijack operator authentication by crafting requests that insert XSS sequences via parameters to operator/ban.php (address, threadid) and operator/settings.php (geo...