Description
forum_post.php in e107 0.6 allows remote attackers to post to non-existent forums by modifying the forum number.
Remediation
References
Related Vulnerabilities
WordPress Plugin Favicon by RealFaviconGenerator Cross-Site Scripting (1.2.12)
WordPress Plugin WP24 Domain Check Cross-Site Scripting (1.6.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-0214)
WordPress Plugin Simple Events Calendar SQL Injection (1.3.5)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-3092)