Security Advisory

CVE-2022-46890

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-19 00:00:00

Last updated 2025-04-03 18:08:39

Assigner mitre

State PUBLISHED

Description

Weak access control in NexusPHP before 1.7.33 allows a remote authenticated user to edit any post in the forum (this is caused by a lack of checks performed by the /forums.php?action=post page).

← Browse all CVEs View on cve.org ↗