CVE-2010-5065

Publication date

2012-10-08 10:00:00

Family

mitre

State

PUBLISHED

Description

popup.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to bypass intended member restrictions and read news posts via a modified newsid parameter in a printnews action.