User impersonation vulnerability in Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1

User impersonation vulnerability in Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1

CVE-2002-0108 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address.

Learn more about our User Device Pen Test.