CVE-2015-9292

6kbbs 7.1 and 8.0 allows CSRF via portalchannel_ajax.php (id or code parameter) or admin.php (fileids parameter).

Date published : 2019-08-08

https://cxsecurity.com/issue/WLB-2015040034