Cross-site request forgery (CSRF) vulnerabilities in (1) cp_forums.php, (2) cp_usergroup.php, (3) cp_ipbans.php, (4) myhome.php, (5) post.php, or (6) moderator.php in Open Bulletin Board (OpenBB) 1.0.6 and previous versions allow remote malicious users to execute arbitrary code by including the code in an image tag or a link.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbb openbb 1.0.6 |