Security Advisory

CVE-2010-3713

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-10-27 22:00:00

Last updated 2024-09-16 20:31:51

Assigner redhat

State PUBLISHED

Description

rss.php in UseBB before 1.0.11 does not properly handle forum configurations in which a user has the view permission but not the read permission, which allows remote attackers to bypass intended access restrictions by reading a forum feed in combination with a topic feed.

← Browse all CVEs View on cve.org ↗