3 matches found
CVE-2005-0345
CVE-2005-0345 affects php-fusion 4.x where viewthread.php does not validate (1) forum_id or (2) forum_cat parameters, enabling remote attackers to view protected forums by supplying a thread_id. Reported impact is partial confidentiality loss; exploitation appears through crafted thread access ra...
CVE-2005-0345
viewthread.php in php-fusion 4.x does not check the 1 forumid or 2 forumcat parameters, which allows remote attackers to view protected forums via the threadid parameter...
PHP-Fusion < 5.00 viewthread.php Arbitrary Message Thread / Forum Access
A vulnerability exists in the version of PHP-Fusion installed on the remote host that may allow an attacker to read the contents of arbitrary forums and threads, regardless of the attacker's privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...