Description
Separate Groups mode restrictions were not honoured in the forum summary report, which would display users from other groups.
Remediation
References
Related Vulnerabilities
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17308)
WordPress Plugin WPeMatico RSS Feed Fetcher Cross-Site Scripting (2.6.11)
Oracle HTTP Server Exposure of Resource to Wrong Sphere Vulnerability (CVE-2022-25236)
WordPress Plugin ABASE Multiple Vulnerabilities (2.6)
RubyGems Deserialization of Untrusted Data Vulnerability (CVE-2017-0903)