Description forum_post.php in e107 0.6 allows remote attackers to post to non-existent forums by modifying the forum number. Remediation References CVE-2005-2805 Related Vulnerabilities Drupal Other Vulnerability (CVE-2015-3233) WordPress Plugin PDW Media File Browser 'upload.php' Arbitrary File Upload (1.1) WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.44) Drupal Improper Privilege Management Vulnerability (CVE-2017-6924) Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3900) Severity Medium Classification CVE-2005-2805 Tags Missing Update Known Vulnerabilities