2006-06-03 01:00:00
mitre
PUBLISHED
Hesabim.asp in ASPSitem 2.0 and earlier allows remote attackers to read private messages of other users via a modified id parameter.