First published: Wed May 19 2010(Updated: )
feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum.
Credit: secalert@redhat.com secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Phpbb Phpbb | =3.0.7 | |
composer/phpbb/phpbb | >3.0.6<3.0.7-PL1 | 3.0.7-PL1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.