post_message_form.asp in Web Wiz Forums 6.34 through 7.5, when quote mode is used, allows remote attackers to read or write to private forums by modifying the FID (forum ID) parameter.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:46
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/10137 - | |
References | () http://securitytracker.com/id?1008100 - | |
References | () http://www.osvdb.org/2768 - | |
References | () http://www.securityfocus.com/archive/1/343175 - Exploit | |
References | () http://www.securityfocus.com/archive/1/343314 - Patch | |
References | () http://www.securityfocus.com/bid/8957 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/13581 - |
Information
Published : 2003-12-31 05:00
Updated : 2024-11-20 23:46
NVD link : CVE-2003-1176
Mitre link : CVE-2003-1176
CVE.ORG link : CVE-2003-1176
JSON object : View
Products Affected
bdc_enterprises
- web_wiz_forums
CWE