CVE-2006-6508Group Phpbb vulnerability

2 documents2 sources
Severity
6.0MEDIUMNVD
EPSS
0.7%
top 27.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpbb Group Phpbb
Timeline
PublishedDec 14
Latest updateMay 1

Description

Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.21 allows remote authenticated users to send unauthorized messages as an arbitrary user via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 6.8 | Impact: 6.4

Affected Packages1 packages

NVDphpbb_group/phpbb2.0.21

🔴Vulnerability Details

1
GHSA
GHSA-9vg8-6rrp-ghpq: Cross-site request forgery (CSRF) vulnerability in phpBB 22022-05-01