CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0352

Phorum 3.3.2 allows remote attackers to determine the email addresses of the 10 most active users via a direct HTTP request to the stats.php program, which does not require authentication.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=101508207206900&w=2
http://www.iss.net/security_center/static/8344.php
http://www.securityfocus.com/bid/4226
http://marc.info/?l=bugtraq&m=101508207206900&w=2
http://www.iss.net/security_center/static/8344.php
http://www.securityfocus.com/bid/4226

Products affected by CVE-2002-0352

Phorum » Phorum » Version: 3.3.2

cpe:2.3:a:phorum:phorum:3.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0352

Products

Pricing

Contact Us