CVE-2007-3592

CVE-2007-3592

EPSS 1.1%

PM.php in Elite Bulletin Board before 1.0.10 allows remote authenticated users to delete arbitrary PM messages and conduct other attacks via modified id fields.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://osvdb.org/37820 http://secunia.com/advisories/25926 https://exchange.xforce.ibmcloud.com/vulnerabilities/35262 http://sourceforge.net/project/shownotes.php?release_id=520558&group_id=175118 http://www.securityfocus.com/bid/24763