Description
Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote attackers to delete private messages (PM) as arbitrary users via a deleteall action.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2530 Vulnerability (CVE-2019-2530)
PHP Out-of-bounds Read Vulnerability (CVE-2020-7067)
WordPress Plugin PowerPack Lite for Beaver Builder Cross-Site Scripting (1.2.9.2)
PHP Observable Discrepancy Vulnerability (CVE-2024-2408)
WordPress Plugin WP Construction Mode Cross-Site Request Forgery (1.8)