cve/2019/CVE-2019-16531.md

CVE-2019-16531

Description

LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by changing the System Settings via admin/general.php.

POC

Reference

• http://packetstormsecurity.com/files/154549/LayerBB-1.1.3-Cross-Site-Request-Forgery.html
• http://packetstormsecurity.com/files/154549/LayerBB-1.1.3-Cross-Site-Request-Forgery.html
• https://github.com/0xB9/LayerBB-1.1.3-CSRF/blob/master/README.md
• https://github.com/0xB9/LayerBB-1.1.3-CSRF/blob/master/README.md

Github

• https://github.com/0xB9/LayerBB-1.1.3-CSRF
• https://github.com/ARPSyndicate/cvemon