Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in index.php in WoltLab Burning Board (wBB) 3.0.1, and possibly other 3.x versions, allows remote attackers to hijack the authentication of users for requests that delete private messages via the pmID parameter in a delete action in a PM page, a different vulnerability than CVE-2008-0472.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WoltLab Burning Board 脚本index.php 跨站请求伪造漏洞
Vulnerability Description
WoltLab Burning Board (wBB) 3.0.1和其他的3.x版本中的index.php存在跨站请求伪造漏洞。远程攻击者可以借助PM页的删除操作中的pmID参数,劫持用户用于发送请求的身份认证。该请求可以删除特权信息。
CVSS Information
N/A
Vulnerability Type
N/A