CVE-2009-2355

CVE-2009-2355 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

The forum module in NullLogic Groupware 1.2.7 allows remote authenticated users to cause a denial of service (application crash) by specifying (1) an empty string or (2) a non-numeric string when selecting a forum, related to the fmessagelist function.

Learn more about our User Device Pen Test.