Lucene search

K
cvelistMitreCVELIST:CVE-2015-1432
HistoryFeb 10, 2015 - 5:00 p.m.

CVE-2015-1432

2015-02-1017:00:00
mitre
www.cve.org

6.5 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.3%

The message_options function in includes/ucp/ucp_pm_options.php in phpBB before 3.0.13 does not properly validate the form key, which allows remote attackers to conduct CSRF attacks and change the full folder setting via unspecified vectors.

6.5 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.3%

Related for CVELIST:CVE-2015-1432