CVE-2008-1323

Name of the Vulnerable Software and Affected Versions WoltLab Burning Board Lite (wBB) version 2 Beta 1

Description A cross-site request forgery (CSRF) issue exists, allowing remote attackers to perform actions as other users. This can be exploited to delete threads via the ThreadDelete action.

Recommendations For version 2 Beta 1, consider implementing CSRF protection mechanisms to prevent unauthorized actions, such as validating request tokens or using same-site cookies to restrict request origins. As a temporary workaround, restrict access to the ThreadDelete action to minimize the risk of exploitation.