Arbitrary Message Reading Vulnerability in Open Bulletin Board (OpenBB) 1.0.6 and Earlier

Arbitrary Message Reading Vulnerability in Open Bulletin Board (OpenBB) 1.0.6 and Earlier

CVE-2004-1968 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The readmsg action in myhome.php in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to read arbitrary messages by modifying the id parameter.

Learn more about our Web Application Penetration Testing UK.