Hello, Multiple cross-site request forgery (CSRF) vulnerabilities in  OpenX 2.8.11and earlier allows remote attackers to hijack the authentication of administrators for requests that delete (1) users, (2) advertisers, (3) banners, (4) campaigns, (5) channels, (6) websites or (7) zones via delete actions. File: admin/agency-user-unlink.php POC: File: admin/advertiser-delete.php POC: File: admin/banner-delete.php POC: File: admin/campaign-delete.php POC: File: admin/channel-delete.php  POC:   File: admin/affiliate-delete.php POC:   File: admin/zone-delete.php POC: Best regards.