Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2008-0471

Published: 29/01/2008 Updated: 15/10/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Phpbb

Vulnerability Summary

Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote malicious users to delete private messages (PM) as arbitrary users via a deleteall action.

Vulnerable Product Search on Vulmon Subscribe to Product

phpbb phpbb 2.0.22

Vendor Advisories

Debian Security Advisories: DSA-1488-1 phpbb2 -- several vulnerabilities
Several remote vulnerabilities have been discovered in phpBB, a web based bulletin board The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-0471 Private messaging allowed cross site request forgery, making it possible to delete all private messages of a user by sending them to a crafted web page CVE-2 ...

References

CWE-352http://secunia.com/advisories/28630http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=463589http://www.debian.org/security/2008/dsa-1488http://secunia.com/advisories/28871http://securityreason.com/securityalert/3585http://www.securityfocus.com/archive/1/487004/100/0/threadedhttps://nvd.nist.govhttps://www.debian.org/security/./dsa-1488
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook