CVE-2010-3713

2010-10-27T20:00:04
ID CVE-2010-3713
Type cve
Reporter NVD
Modified 2010-10-28T00:00:00

Description

rss.php in UseBB before 1.0.11 does not properly handle forum configurations in which a user has the view permission but not the read permission, which allows remote attackers to bypass intended access restrictions by reading a forum feed in combination with a topic feed.