Required CVE Record Information
Description
message.php in Petitforum does not properly authenticate users, which allows remote attackers to impersonate forum users via a modified connect cookie.
References 2 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 2 Total
- securitytracker.com: 1006117 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: petitforum-message-auth-bypass(11359) vdb-entryx_transferred