Description
feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2006-5344 Vulnerability (CVE-2006-5344)
WebLogic Improper Certificate Validation Vulnerability (CVE-2020-9488)
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-15695)
Drupal Other Vulnerability (CVE-2006-4002)
WordPress Plugin Better Search Cross-Site Request Forgery (2.5.2)