Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.21 allows remote authenticated users to send unauthorized messages as an arbitrary user via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Phpbb Group | Phpbb | 2.0.21 |
References
- http://secunia.com/advisories/23283Vendor Advisory
- http://secunia.com/advisories/28871
- http://www.debian.org/security/2008/dsa-1488
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30786
- http://secunia.com/advisories/23283Vendor Advisory
- http://secunia.com/advisories/28871
- http://www.debian.org/security/2008/dsa-1488
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30786
FAQ
What is CVE-2006-6508?
CVE-2006-6508 is a vulnerability with a CVSS score of 6.0 (MEDIUM). Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.21 allows remote authenticated users to send unauthorized messages as an arbitrary user via unspecified vectors. NOTE: the provenance of t...
How severe is CVE-2006-6508?
CVE-2006-6508 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6508?
Check the references section above for vendor advisories and patch information. Affected products include: Phpbb Group Phpbb.