Description

Unspecified vulnerability in phpBB before 3.0.4 allows attackers to obtain sensitive information via unknown vectors related to the lack of password prompts for a private message that quotes a post in a password-protected forum.

Remediation

References

CVE-2008-6507

Related Vulnerabilities

IBM RTC Improper Restriction of XML External Entity Reference Vulnerability (CVE-2016-9707)

PHP Other Vulnerability (CVE-2007-1711)

Drupal CVE-2014-9016 Vulnerability (CVE-2014-9016)

Mailman Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-0707)

Apache HTTP Server Cryptographic Issues Vulnerability (CVE-2016-0736)

Severity

Medium

Classification

CVE-2008-6507

Tags

Missing Update Known Vulnerabilities