Launchpad.net

CVE 2006-6508

Cross-site request forgery (CSRF) vulnerability in phpBB 2.0.21 allows remote authenticated users to send unauthorized messages as an arbitrary user via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Related bugs and status

CVE-2006-6508 (Candidate) is related to these bugs:

Bug #191201: [phpbb2] several remote vulnerabilities

		In	Importance	Status
191201	[phpbb2] several remote vulnerabilities	phpbb2 (Ubuntu)	Undecided	Fix Released
191201	[phpbb2] several remote vulnerabilities	phpbb2 (Ubuntu Dapper)	Undecided	Won't Fix
191201	[phpbb2] several remote vulnerabilities	phpbb2 (Ubuntu Edgy)	Undecided	Won't Fix
191201	[phpbb2] several remote vulnerabilities	phpbb2 (Ubuntu Gutsy)	Undecided	Won't Fix
191201	[phpbb2] several remote vulnerabilities	phpbb2 (Ubuntu Feisty)	Undecided	Won't Fix
191201	[phpbb2] several remote vulnerabilities	phpbb2 (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

SECUNIA: 23283
DEBIAN: DSA-1488
SECUNIA: 28871
XF: phpbb-message-csrf(30786)