Description
Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote attackers to delete private messages (PM) as arbitrary users via a deleteall action.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Media Download Cross-Site Scripting (1.1.6)
WordPress Plugin DM Albums Multiple File Deletion Vulnerabilities (2.1)
MySQL CVE-2018-2813 Vulnerability (CVE-2018-2813)
WordPress Plugin FD Feedburner Cross-Site Request Forgery (1.42)
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Scripting (3.4.8.2)