First published: Wed Apr 25 2007(Updated: )
include/controlcenter/users.php in Phorum before 5.1.22 allows remote authenticated moderators to gain privileges via a modified (1) user_ids POST parameter or (2) userdata array.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Phorum Phorum | <=5.1.20 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.