Phpbb : Security Vulnerabilities, CVEs, Published In September 2008
The search function in phpBB 2.x provides a search_id value that leaks the state of PHP's PRNG, which allows remote attackers to obtain potentially sensitive information, as demonstrated by a cross-application attack against WordPress, a different vulnerability than CVE-2006-0632.
Max CVSS
5.0
EPSS Score
0.30%
Published
2008-09-18
Updated
2017-08-08
1 vulnerabilities found