Multiple cross-site request forgery (CSRF) vulnerabilities in admin.php in PBBoard 2.1.4 allow remote malicious users to hijack the authentication of administrators for requests that (1) upload a file via an add action or (2) change the contents of a file via a dit action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pbboard pbboard 2.1.4 |