PunBB uses a predictable cookie_seed value that can be derived from the time of registration of the superadmin account (installation time), which might allow local users to perform unauthorized actions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
punbb punbb 1.2.14 |