CVE-2002-0108

Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address...

CVE-2002-0108

Allaire Forums 2.0.4/2.0.5 and Forums! 3.0/3.1 allow remote authenticated users to spoof messages by modifying hidden form fields that carry the name and e-mail address. The root cause is lack of verification of user information submitted via hidden fields, enabling impersonation of other users w...