The remote web server contains a PHP application that is prone to an information disclosure flaw. Description : According to its banner, the remote version of PunBB reportedly may include protected forums in a search dropdown list regardless of whether a user can view those forums.

Update to PunBB version 1.1.5 or later.

• http://www.punbb.org/changelogs/1.1.4_to_1.1.5.txt

---

Updated on 2015-03-25