APBoard 2.0 2 - Unauthorized Thread Reading
| EKU-ID: 27565 | CVE: | OSVDB-ID: |
| Author: DNA ESC | Published: 2002-12-06 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27565 | CVE: | OSVDB-ID: |
| Author: DNA ESC | Published: 2002-12-06 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/6330/info A vulnerability has been reported for APBoard that may allow unauthorized users to read postings in internal forums. The vulnerability is a result of the 'useraction.php' script failing to properly check user credentials. www.board.de/useraction.php3?action=subscribe_thread&threadid=<private thread id>