PbootCMS is an open source enterprise website content management system (CMS) developed using the PHP language.The message board of PbootCMS 2.0.6 is vulnerable to an access control error. An attacker can exploit the access control error vulnerability by executing the list parameter in the update function in upgradecontroller.php.