CVE-2008-5672

Publication date

2008-12-18 21:00:00

Family

mitre

State

PUBLISHED

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in PHParanoid before 0.4 allow remote attackers to hijack the authentication of arbitrary users for requests that use (1) admin.php or (2) private messages.