Description

Separate Groups mode restrictions were not honoured in the forum summary report, which would display users from other groups.

Remediation

References

CVE-2023-5551

Related Vulnerabilities

Payara URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-41699)

Drupal Reliance on Cookies without Validation and Integrity Checking Vulnerability (CVE-2022-29248)

WordPress Plugin Pike Firewall Information Disclosure (1.4)

TCExam Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3806)

Oracle Database Server Other Vulnerability (CVE-2007-0278)

Severity

Low

Classification

CVE-2023-5551 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities