CVE-2006-2422
CVE-2006-2422 affects phpCOIN 1.2.3 and earlier. The flaw allows remote authenticated users to read other users’ messages by adding the sender’s e‑mail address as an “additional contact,” indicating a partial confidentiality impact. The NVD entry notes network attack vector with low complexity an...