2007-04-03 00:00:00
mitre
PUBLISHED
The search function in cgi-lib/user-lib/search.pl in web-app.net WebAPP before 20060909 allows remote attackers to read internal forum posts via certain requests, possibly related to the $info{forum} variable.