Cross-Site Request Forgery in phpBB 2.0.21
CVE-2006-6508

Currently unrated

Key Information:

Vendor: PHPbb Group
Status: PHPbb
Vendor: CVE Published:; 14 December 2006

🔔 Create PHPbb Group Vulnerability Alert

What is CVE-2006-6508?

The vulnerability in phpBB 2.0.21 enables remote authenticated users to exploit cross-site request forgery (CSRF) to send unauthorized messages impersonating other users. Unsanctioned actions can be executed through various unspecified methods, which can jeopardize user interactions and trust within the phpBB environment. The nature of this vulnerability poses a significant risk, emphasizing the importance of applying patches and following best security practices.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/30786

vdb-entryx_refsource_XF

http://secunia.com/advisories/28871

third-party-advisoryx_refsource_SECUNIA

http://www.debian.org/security/2008/dsa-1488

vendor-advisoryx_refsource_DEBIAN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 14, 2006
Vulnerability Reserved
Dec 13, 2006

CVE-2006-6508 Data

JSON