The search function in cgi-lib/user-lib/search.pl in web-app.net WebAPP prior to 20060909 allows remote malicious users to read internal forum posts via certain requests, possibly related to the $info{'forum'} variable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
web-app.net webapp 0.9.9.6 |