CVE-2008-5672

Multiple cross-site request forgery (CSRF) vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use (1) admin.php or (2) private messages.
Configurations

Configuration 1

cpe:2.3:a:phparanoid:phparanoid:0.2:*:*:*:*:*:*:*
cpe:2.3:a:phparanoid:phparanoid:*:*:*:*:*:*:*:*
cpe:2.3:a:phparanoid:phparanoid:0.1:*:*:*:*:*:*:*

Information

Published : 2008-12-19 01:52

Updated : 2017-08-08 01:33


NVD link : CVE-2008-5672

Mitre link : CVE-2008-5672

Products Affected
No products.
CWE