CVE-2008-7241

Cross-site request forgery (CSRF) vulnerability in PunBB before 1.2.17 allows remote attackers to hijack the authentication of unspecified users for requests related to a logout, probably a forced logout.
Configurations

Configuration 1

cpe:2.3:a:punbb:punbb:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.0:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:*:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.1:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.14:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.13:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.15:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.12:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.11:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:punbb:punbb:1.2.9:*:*:*:*:*:*:*

Information

Published : 2009-09-17 06:30

Updated : 2009-09-18 04:00


NVD link : CVE-2008-7241

Mitre link : CVE-2008-7241

Products Affected
CWE