Security Vulnerabilities, CVEs, Published In April 2007 (CSRF)
Cross-site request forgery (CSRF) vulnerability in include/admin/banlist.php in Phorum before 5.1.22 allows remote attackers to perform unauthorized banlist deletions as an administrator via the delete parameter.
Max CVSS
7.5
EPSS Score
11.87%
Published
2007-04-27
Updated
2018-10-16
Multiple cross-site request forgery (CSRF) vulnerabilities in the Database Administration (dba) module 4.6.x-*, and before 4.7.x-1.2 in the 4.7.x-1.* series, for Drupal allow remote attackers to perform unauthorized actions as an arbitrary user, a related issue to CVE-2006-5476.
Max CVSS
7.5
EPSS Score
1.04%
Published
2007-04-22
Updated
2011-03-08
2 vulnerabilities found