Cross-site request forgery (CSRF) vulnerability in index.php in BabbleBoard 1.1.6 allows remote authenticated users to hijack the authentication of administrators for requests that delete (1) categories or (2) groups; (3) ban users; or (4) delete users via the admin page.
References
Link | Resource |
---|---|
http://osvdb.org/50721 | Exploit |
http://secunia.com/advisories/33174 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/47396 | |
https://www.exploit-db.com/exploits/7475 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-08-06T17:00:00
Updated: 2017-09-28T12:57:01
Reserved: 2009-08-06T00:00:00
Link: CVE-2008-6905
JSON object: View
NVD Information
Status : Modified
Published: 2009-08-06T17:30:00.327
Modified: 2017-09-29T01:33:24.403
Link: CVE-2008-6905
JSON object: View
Redhat Information
No data.
CWE