2007-10-20 14:00:00
mitre
PUBLISHED
message.php in Petitforum does not properly authenticate users, which allows remote attackers to impersonate forum users via a modified connect cookie.