← back
CVE-2006-0139

CVE-2006-0139

EPSS 1.7%
The send-private-message functionality (send-private-message.asp) in PD9 Software MegaBBS 2.1 allows remote attackers to read private messages of other users via a modified replyid parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/18342http://securitytracker.com/id?1015452https://exchange.xforce.ibmcloud.com/vulnerabilities/24050http://www.hamid.ir/security/megabbs.txthttp://www.pd9soft.com/megabbs/forums/thread-view.asp?tid=4924http://www.securityfocus.com/bid/16168http://www.vupen.com/english/advisories/2006/0095