Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote malicious users to delete private messages (PM) as arbitrary users via a deleteall action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpbb phpbb 2.0.22 |