CVE-2007-2249

Medium

6.5/10

Summary

include/controlcenter/users.php in Phorum before 5.1.22 allows remote authenticated moderators to gain privileges via a modified (1) user_ids POST parameter or (2) userdata array.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: SINGLE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Apr 25, 2007

CVE-2007-2249

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS