Description
feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum.
Remediation
References
Related Vulnerabilities
WordPress Plugin Elementor Pro Security Bypass (3.11.6)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2010-1866)
WordPress Plugin Product Catalog Privilege Escalation (3.8.1)
Oracle JRE CVE-2018-2795 Vulnerability (CVE-2018-2795)
WordPress Plugin Zingiri Web Shop 'uploadfilexd.php' Arbitrary File Upload (2.4.3)