In ProjectWorlds Online Book Store PHP 1.0 a CSRF vulnerability in admin_delete.php allows a remote malicious user to delete any book.
projectworlds online book store project in php 1.0