Description
feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check permissions for feeds, which allows remote attackers to bypass intended access restrictions via unspecified attack vectors related to permission settings on a private forum.
Remediation
References
Related Vulnerabilities
WordPress Plugin All-in-One Custom Backgrounds Lite Unspecified Vulnerability (2.0.2)
Multiple SugarCRM Products Remote Code Execution Vulnerability (CVE-2023-22952)
WebLogic CVE-2022-21252 Vulnerability (CVE-2022-21252)
WordPress Plugin Media File Renamer-Auto & Manual Rename Cross-Site Scripting (1.7.0)
WordPress Plugin Thank You Counter Button Cross-Site Scripting (1.8.2)