Description An issue exists in Vanilla Forums before 2.0.17.9 due to the way cookies are handled. Remediation References CVE-2011-3613 Related Vulnerabilities WordPress Plugin Google Authenticator-Per User Prompt Timing Attack (0.6) WordPress Plugin SpamBam Key Calculation Security Bypass (2.1) Joomla! Core 3.9.x CSV Injection (3.9.0 - 3.9.6) SugarCRM Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-17314) Oracle Application Server Credentials Management Errors Vulnerability (CVE-2004-1366) Severity High Classification CVE-2011-3613 CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities