CVE-2009-0852

showme.php in CelerBB 0.0.2 allows remote attackers to obtain "reserved information" via the user parameter.