Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote malicious users to perform unauthorized actions as the administrative user via a link or IMG tag to YaBB.pl that specifies the desired action, id, and moda parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
yabb yabb 1_gold_-_sp_1.2 |
||
yabb yabb 1_gold_-_sp_1.3 |
||
yabb yabb 1.41 |
||
yabb yabb 1_gold_-_sp_1 |
||
yabb yabb 2000-09-11 |
||
yabb yabb 1.40 |
||
yabb yabb 1_gold_release |
||
yabb yabb 2000-09-01 |
||
yabb yabb 1_gold_-_sp_1.3.1 |
||
yabb yabb 1_gold_-_sp_1.3.2 |