Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.8
CVSSv2

CVE-2006-6741

Published: 26/12/2006 Updated: 17/10/2018
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
VMScore: 585
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:P
Subscribe to Mkportal

Vulnerability Summary

Cross-site request forgery (CSRF) vulnerability in urlobox in MKPortal allows remote malicious users to delete arbitrary messages as an administrator via a delete operation in an img BBcode tag.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

mkportal mkportal 1.1

Exploits

Exploit DB: MKPortal M1.1.1 - 'Urlobox' Cross-Site Request Forgery
MkPortal Urlobox Cross Site Request Forgery Discovered by: Demential Web: wwwburnheadit E-mail: info@burnheadit Mkportal website: wwwmkportalit posting [img]?ind=urlobox&op=delete&idurlo=X[/img] in MkPortal urlobox where X is an ID of a message, when administrator opens urlobox page message X will be erased # milw0rm ...

References

CWE-352http://secunia.com/advisories/23431http://www.vupen.com/english/advisories/2006/5115http://www.securityfocus.com/archive/1/454868/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/2977/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook