Description
Unspecified vulnerability in phpBB before 3.0.4 allows attackers to obtain sensitive information via unknown vectors related to the lack of password prompts for a private message that quotes a post in a password-protected forum.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Human Resource Management Security Bypass (2.2.14)
MyBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-43281)
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2010-2950)
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3725)