Allaire Forums "rightAccessAllForums" Vulnerability
BID:1085
Info
Allaire Forums "rightAccessAllForums" Vulnerability
| Bugtraq ID: | 1085 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Apr 03 2000 12:00AM |
| Updated: | Apr 03 2000 12:00AM |
| Credit: | Discovered and reported to Allaire by Cameron Childress. Publicized by Allaire in a security bulletin released April 3, 2000. |
| Vulnerable: |
Allaire Forums 2.0.5 |
| Not Vulnerable: | |
Discussion
Allaire Forums "rightAccessAllForums" Vulnerability
Allaire Forums 2.0.5 can allow unauthorized users to view and post to secure threads. This is possible due to a flaw in the handling of the "rightAccessAllForums" variable.
Allaire Forums 2.0.5 can allow unauthorized users to view and post to secure threads. This is possible due to a flaw in the handling of the "rightAccessAllForums" variable.