CVE-2008-0471
Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote attackers to delete private messages (PM) as arbitrary users via a deleteall action.
Date published : 2008-01-29
http://www.securityfocus.com/archive/1/487004/100/0/threaded