9 lines
No EOL
572 B
Text
9 lines
No EOL
572 B
Text
source: http://www.securityfocus.com/bid/4823/info
|
|
|
|
OpenBB is web forum software written in PHP. It will run on most Linux and Unix variants, in addition to Microsoft Windows operating systems.
|
|
|
|
OpenBB is reported to be vulnerable to a condition that will allow an unauthorized user to gain moderator or administrative access to forums. The attacker is only able to change a few properties of the forums.
|
|
|
|
http://www.site.com/moderator.php?action=lock&TID=LIDDUFORUM&ismod=1
|
|
|
|
This will lock the forum. Other keywords include 'action=sticky' or 'action=important'. |