Full title: phpBB 3.0.11 CSRF Vulnerability Category: web applications Platform: php An attacker may force the users of a web application to execute actions of the attacker's choosing. A successful CSRF exploit can compromise end user data and operation in case of normal user. If the targeted end user is the administrator account, this can compromise the entire web application. # 0day.today @ http://0day.today/