CVE-2008-5758

Cross-site request forgery (CSRF) vulnerability in PHParanoid before 0.5 allows remote attackers to perform unspecified actions as authenticated users via unknown vectors related to private messages.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Affected Products (NVD)
VendorProductVersion
phparanoidphparanoid
𝑥
≤ 0.4
phparanoidphparanoid
0.1
phparanoidphparanoid
0.2
phparanoidphparanoid
0.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/28847
http://sourceforge.net/project/shownotes.php?release_id=575374
https://exchange.xforce.ibmcloud.com/vulnerabilities/47749
http://secunia.com/advisories/28847
http://sourceforge.net/project/shownotes.php?release_id=575374
https://exchange.xforce.ibmcloud.com/vulnerabilities/47749