CVE-2006-7188

The search function in cgi-lib/user-lib/search.pl in web-app.net WebAPP before 20060909 allows remote attackers to read internal forum posts via certain requests, possibly related to the $info'forum' variable...

APBoard 2.02 未授权内部论坛信息可读漏洞

BUGTRAQ: 6330 由于'useraction.php'脚本不正确检查用户权限信息，远程攻击者可以利用这个漏洞未授权读取内部论坛的帖子。 利用'useraction.php'脚本对用户权限检查不正确，远程攻击者可以使脚本把内部论坛的帖子直接发到攻击者注册的信箱，造成未授权访问内部信息。 APBoard 2.02 厂商补丁： APP --- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.php-programming.info/...

Virginity Security Advisory 2003-002 : Tritanium Bulletin Board - Read and write from/to internal (protected) Threads

-------------------------------------------------------------------- Virginity Security Advisory 2003-002 - - - -------------------------------------------------------------------- DATE : 2003-10-31 22:59 GMT TYPE : remote VERSIONS AFFECTED : == Tritanium Bulletin Board 1.2.3...

APBoard-Bug

Product: APBoard-Bug Versions: tested on 2.02 Vulnerability: users can subscribe a thread in the internal forum Date: Dezember 5, 2002 Discovered by: DNA [email protected] Introduction: Normal Users can read new answers to a thread in the internal forum I have already informed APP about this...

APBoard 2.0 2 - Unauthorized Thread Reading

APBoard 2.0 2 - Unauthorized Thread Reading source: https://www.securityfocus.com/bid/6330/info A vulnerability has been reported for APBoard that may allow unauthorized users to read postings in internal forums. The vulnerability is a result of the 'useraction.php' script failing to properly che...