phpBB Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2008-0471 - Vulnerability Database

phpBB Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2008-0471

Medium

Reference: CVE-2008-0471

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-0471

Title: phpBB Cross-Site Request Forgery (CSRF) Vulnerability

Overview:

Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote attackers to delete private messages (PM) as arbitrary users via a deleteall action.