Vulnerabilities > CVE-2003-1424 - Credentials Management vulnerability in Petitforum

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

message.php in Petitforum does not properly authenticate users, which allows remote attackers to impersonate forum users via a modified connect cookie.

Vulnerable Configurations

Part Description Count
Application
Petitforum
1

Common Weakness Enumeration (CWE)