PunBB uses a predictable cookie_seed value that can be derived from the time of registration of the superadmin account (installation time), which might allow local users to perform unauthorized actions.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-11-06T18:00:00
Updated: 2018-10-17T20:57:01
Reserved: 2006-11-06T00:00:00
Link: CVE-2006-5737
JSON object: View
NVD Information
Status : Modified
Published: 2006-11-06T18:07:00.000
Modified: 2018-10-17T21:44:19.520
Link: CVE-2006-5737
JSON object: View
Redhat Information
No data.
CWE