CVE-2003-1176 Information

Description

post_message_form.asp in Web Wiz Forums 6.34 through 7.5 when quote mode is used allows remote attackers to read or write to private forums by modifying the FID (forum ID) parameter.

Reference

http://secunia.com/advisories/10137 http://securitytracker.com/id?1008100 http://www.osvdb.org/2768 http://www.securityfocus.com/archive/1/343175 http://www.securityfocus.com/archive/1/343314 http://www.securityfocus.com/bid/8957 https://exchange.xforce.ibmcloud.com/vulnerabilities/13581