CVE-2006-6741
MKPortal - CSRF
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in urlobox in MKPortal allows remote attackers to delete arbitrary messages as an administrator via a delete operation in an img BBcode tag.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Demential · textwebappsphp
https://www.exploit-db.com/exploits/2977
Scores
EPSS
0.0028
EPSS Percentile
50.9%
Classification
CWE
CWE-352
Status
draft
Affected Products (1)
mkportal/mkportal
Timeline
Published
Dec 26, 2006
Tracked Since
Feb 18, 2026